VDB

GCVE-VVD-MAGEIA-2023-94

GCVE-VVD-MAGEIA-2023-94
Advisory Published
Vulnetix · Advisory published October 19, 2023
SQLite through 3.40.0, when relying on --safe for execution of an untrusted CLI script, does not properly implement the azProhibitedFunctions protection mechanism, and instead allows UDF functions such as WRITEFILE. (CVE-2022-46908)
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiaxscreensaver0 (affected), 6.08-1.mga9 (unaffected), 0 (affected), 6.08-1.mga9.tainted (unaffected)
Mageiasqlite30 (affected), 3.39.2-1.1.mga8 (unaffected), 0 (affected), 3.39.2-1.1.mga8 (unaffected)

References

Updated sqlite3 packages fix security vulnerability
advisory
Updated sqlite3 packages fix security vulnerability
issue
Updated sqlite3 packages fix security vulnerability
issue
Updated sqlite3 packages fix security vulnerability
issue
Updated xscreensaver packages fix a bug
advisory
Updated xscreensaver packages fix a bug
issue
Updated xscreensaver packages fix a bug
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›