VDB
CVE-2015-3415
CVE-2015-3415
PUBLISHED
CVSS 9.300000190734863 CRITICAL
The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement comparison operators, which allows context-dependent attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact via a crafted CHECK clause, as demonstrated by CHECK(0&O>O) in a CREATE TABLE statement.
EPSS 7.94% · 92.2th percentile
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
7.94%
92.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ABB | ABB Ability Camera Connect <=2.0.0.42 |
Exploit Intelligence
- poc for CVE-2015-1855 (github-poc)
- poc for CVE-2015-1855 (github-poc)
- poc for CVE-2015-1855 (github-poc)
- poc for CVE-2015-1855 (github-poc)
- poc for CVE-2015-1855 (github-poc)
- poc for CVE-2015-1855 (github-poc)
- poc for CVE-2015-1855 (github-poc)
- A check for GHOST; cve-2015-0235 (github-poc)
- A check for GHOST; cve-2015-0235 (github-poc)
- A check for GHOST; cve-2015-0235 (github-poc)
…and 138 more exploits
Timeline
- Mar 19, 2015 CVE Published
- Sep 12, 2017 PoC Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
- Dec 21, 2023 EPSS Score
References
- https://psirt.abb.com/csaf/2026/4hzm000604.json advisory
- https://search.abb.com/library/Download.aspx?DocumentID=4HZM000604&LanguageCode=en&DocumentPartId=PDF&Action=Launch advisory
- https://nvd.nist.gov/vuln/detail/CVE-2015-3415 advisory
- https://nvd.nist.gov/vuln-metrics/cvss/v2-calculator?vector=(AV:N/AC:L/Au:N/C:P/I:P/A:P) advisory