CNVD-2016-04575 — Vulnetix

CNVD-2016-04575 PUBLISHED

SQLite是美国软件开发者D.Richard Hipp所研发的一套基于C语言的开源嵌入式关系数据库管理系统。该系统具有独立性、隔离性、可跨平台等特点。 SQLite 3.13.0之前版本中存在安全漏洞，该漏洞源于程序使用不正确的权限创建临时文件。本地攻击者可利用该漏洞导致数据泄露。

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a

Timeline

Apr 3, 2009 CVE Published
Mar 31, 2026 Security Advisory

References

https://www.tenable.com/security/tns-2016-20 url
openSUSE-SU-2016:2041 vendor-advisory
https://www.sqlite.org/releaselog/3_13_0.html url
[oss-security] 20160701 Re: SQLite Tempdir Selection Vulnerability mailing-list
91546 vdb
http://www.sqlite.org/cgi/src/info/67985761aa93fb61 url
FEDORA-2016-0138339b54 vendor-advisory
https://www.korelogic.com/Resources/Advisories/KL-001-2016-003.txt url
[oss-security] 20160701 SQLite Tempdir Selection Vulnerability mailing-list
USN-4019-1 vendor-advisory
USN-4019-2 vendor-advisory
FEDORA-2019-49f80a78bc vendor-advisory
[debian-lts-announce] 20230522 [SECURITY] [DLA 3431-1] sqlite security update mailing-list

Open in Interactive Console →

$ Console Community · 100/wk Open console ›