#VU84985 Out-of-bounds read in SQLite - CVE-2023-7104


Vulnerability identifier: #VU84985

Vulnerability risk: Medium

CVSSv4.0: 5 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-7104

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
SQLite
Server applications / Database software

Vendor: SQLite

Description

The vulnerability allows a remote user to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition within the sessionReadRecord() function in ext/session/sqlite3session.c when processing a corrupt changeset. A remote user can send a specially crafted request to trigger an out-of-bounds read error and read contents of memory on the system or perform a denial of service attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

SQLite: 3.0.0 - 3.43.0

External links
https://vuldb.com/?id.248999
https://vuldb.com/?ctiid.248999
https://sqlite.org/forum/forumpost/5bcbf4571c
https://sqlite.org/src/info/0e4e7a05c4204b47

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Dell Wyse Device Agent update for third-party components
Dell SmartFabric Storage Software update for third-party components
Anolis OS update for sqlite
Multiple vulnerabilities in Multicluster GlobalHub 1.2
Multiple vulnerabilities in Multicluster Engine for Kubernetes 2.5
Multiple vulnerabilities in Dell OpenManage Network Integration (OMNI)
Multiple vulnerabilities in Brocade Fabric OS
Multiple vulnerabilities in Enterprise SONiC Distribution
Multiple vulnerabilities in Red Hat Advanced Cluster Management for Kubernetes 2.11
Multiple vulnerabilities in Multicluster Engine for Kubernetes 2.6