---

CVE-2021-36690 - log back

CVE-2021-36690 edited at 28 Aug 2021 07:48:56
Remote	- Remote + Local
Description	- There is a segmentation fault vulnerability in SQLite 3.36.0 via the idxGetTableInfo function, in which a crafted SQL query can cause a denial of service. + ** DISPUTED ** A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a user of the sqlite3 executable already has full privileges (e.g., is intentionally allowed to execute commands). This report does NOT imply any problem in the SQLite library.

CVE-2021-36690 edited at 24 Aug 2021 16:30:05
Severity	- Unknown + Low
Remote	- Unknown + Remote
Type	- Unknown + Denial of service
Description	+ There is a segmentation fault vulnerability in SQLite 3.36.0 via the idxGetTableInfo function, in which a crafted SQL query can cause a denial of service.
References	+ https://www.sqlite.org/forum/forumpost/718c0a8d17 + https://sqlite.org/src/info/b1e0c22ec981cf5f8a6597abc6711b1a25019dd51de31129fbc504d3dc743bb4
Notes

CVE-2021-36690 created at 24 Aug 2021 16:28:18