mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-29 20:39:28 +02:00
0xMarcio
1.2 KiB
1.2 KiB
CVE-2025-3277
Description
An integer overflow can be triggered in SQLite’s concat_ws() function. The resulting, truncated integer is then used to allocate a buffer. When SQLite then writes the resulting string to the buffer, it uses the original, untruncated size and thus a wild Heap Buffer overflow of size ~4GB can be triggered. This can result in arbitrary code execution.
POC
Reference
No PoCs from references.
Github
- https://github.com/ARPSyndicate/cve-scores
- https://github.com/Vikrantxo/elevate-cybersecurity-task3
- https://github.com/adegoodyer/kubernetes-admin-toolkit
- https://github.com/fkie-cad/nvd-json-data-feeds
- https://github.com/jamesonberendoive/Cybersecurity-Portfolio
- https://github.com/runwhen-contrib/helm-charts
- https://github.com/swamy-2006/BASIC-VUNLNURABILITY-SCAN-GUIDE