VDB
CVE-2025-70873
CVE-2025-70873
PUBLISHED
CVSS 7.5 HIGH
An information disclosure issue in the zipfileInflate function in the zipfile extension in SQLite v3.51.1 and earlier allows attackers to obtain heap memory via supplying a crafted ZIP file.
EPSS 0.05% · 16.7th percentile
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
0.05%
16.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | sqlite | 0 |
Exploit Intelligence
- https://gist.github.com/cnwangjihe/f496393f30f5ecec5b18c8f5ab072054 (vulncheck-nvd)
- dhi-victoriametrics-vmstorage.vex.json (github-poc)
- dhi-victoriametrics-vmstorage.vex.json (github-poc)
- dhi-victoriametrics-vmstorage.vex.json (github-poc)
- dhi-victoriametrics-vmstorage.vex.json (github-poc)
- dhi-victoriametrics-vmstorage.vex.json (github-poc)
- dhi-victoriametrics-vmstorage.vex.json (github-poc)
- dhi-istioctl.vex.json (github-poc)
- dhi-istioctl.vex.json (github-poc)
- dhi-istioctl.vex.json (github-poc)
…and 9 more exploits
Timeline
- Mar 12, 2026 CVE Published
- Mar 13, 2026 EPSS Score
- Mar 14, 2026 EPSS Score
- Mar 14, 2026 CVE Updated
- Mar 15, 2026 EPSS Score
- Mar 16, 2026 EPSS Score
- Mar 17, 2026 EPSS Score
- Mar 18, 2026 EPSS Score
- Mar 19, 2026 EPSS Score
- Mar 20, 2026 EPSS Score
- Mar 21, 2026 EPSS Score
- Mar 22, 2026 EPSS Score