CVE-2025-6965
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-07-15

Last updated on: 2026-04-14

Assigner: Google Inc.

Description
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-07-15
Last Modified
2026-04-14
Generated
2026-05-06
AI Q&A
2025-07-15
EPSS Evaluated
2026-05-05
NVD
CVE-2025-6965
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
sqlite sqlite to 3.50.2 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-197 Truncation errors occur when a primitive is cast to a primitive of a smaller size and data is lost in the conversion.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability exists in SQLite versions before 3.50.2 where the number of aggregate terms in a query could exceed the number of columns available, leading to a memory corruption issue. This means that certain database queries could cause the program to behave unexpectedly or crash due to improper handling of memory.


How can this vulnerability impact me? :

The vulnerability can lead to memory corruption, which may cause application crashes, data corruption, or potentially allow an attacker to execute arbitrary code or cause denial of service. This can affect the stability and security of applications using vulnerable SQLite versions.


What immediate steps should I take to mitigate this vulnerability?

The recommended immediate step to mitigate this vulnerability is to upgrade SQLite to version 3.50.2 or above.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart