VDB
CVE-2025-29087
CVE-2025-29087
PUBLISHED
In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory.
EPSS 0.07% · 22.1th percentile
Risk Scores
EPSS Score
0.07%
22.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | sqlite | 0 |
| Bitnami | sqlite | 0 |
Timeline
- Jan 21, 1970 GitHub Gist PoC
- Apr 7, 2025 CVE Published
- Apr 8, 2025 EPSS Score
- Apr 15, 2025 CVE Updated
- Apr 21, 2025 EPSS Score
- May 3, 2025 EPSS Score
- May 16, 2025 EPSS Score
- May 21, 2025 Coalition ESS Score
- May 28, 2025 EPSS Score
- Jun 10, 2025 EPSS Score
- Jun 23, 2025 EPSS Score
- Jul 5, 2025 EPSS Score
References
- https://gist.github.com/ylwango613/a44a29f1ef074fa783e29f04a0afd62a url
- https://nvd.nist.gov/vuln/detail/CVE-2025-29087 url
- https://sqlite.org/releaselog/3_49_1.html url
- https://www.sqlite.org/cves.html url
- https://sqlite.org/src/info/498e3f1cf57f164f url
- Multiples vulnérabilités dans Tenable Security Center advisory
- Multiples vulnérabilités dans les produits Tenable advisory