CVE-2020-13631
MEDIUM | Platform: tvOS | Changelog
CVE Details
Description
SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c.
CVSS 3.1 Score
| Metric | Value |
|---|---|
| Base Score | 5.5 (MEDIUM) |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
References
- Apple Security Advisory
- NVD Entry
- http://seclists.org/fulldisclosure/2020/Dec/32 (Mailing List, Third Party Advisory)
- http://seclists.org/fulldisclosure/2020/Nov/19 (Mailing List, Third Party Advisory)
- http://seclists.org/fulldisclosure/2020/Nov/20 (Mailing List, Third Party Advisory)
- http://seclists.org/fulldisclosure/2020/Nov/22 (Mailing List, Third Party Advisory)
- https://bugs.chromium.org/p/chromium/issues/detail?id=1080459 (Permissions Required, Third Party Advisory)
- https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf (Patch, Third Party Advisory)
- https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7KXQWHIY2MQP4LNM6ODWJENMXYYQYBN/