Skip to main content
Version: latest

CVE-2019-9937

CVE Details

CVE-2019-9937

Last Update

9/25/24

NIST CVE Summary

In SQLite 3.27.2, interleaving reads and writes in a single transaction with an fts5 virtual table will lead to a NULL Pointer Dereference in fts5ChunkIterate in sqlite3.c. This is related to ext/fts5/fts5_hash.c and ext/fts5/fts5_index.c.

Our Official Summary

Waiting on a fix from third party mongodb vendor.

CVE Severity

7.5

Status

Ongoing

Affected Products & Versions

  • Palette VerteX 4.4.14

Revision History

  • 1.0 08/16/2024 Initial Publication
  • 2.0 08/17/2024 Added Palette VerteX 4.4.14 to Affected Products
  • 3.0 09/25/2024 CVE remediated in Palette VerteX 4.4.18