CVE-2025-6965

EUVD-2025-21441
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 82%
Affected Products (NVD)
VendorProductVersion
sqlitesqlite
𝑥
< 3.50.2
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
SiemensRUGGEDCOM CROSSBOW Station Access Controller \(SAC\)
𝑥
< V5.8
ADP
SiemensSIDIS Prime
𝑥
< V4.0.800
ADP
Windows Releases
Platform
Version
Windows 10
1607 (x64, x86)
KB5073722
1809 (x64, x86)
KB5073723
21H2 (arm64, x64, x86)
KB5073724
22H2 (arm64, x64, x86)
KB5073724
Windows 11
23H2 (arm64, x64)
KB5073455
24H2 (arm64, x64)
KB5074109
25H2 (arm64, x64)
KB5074109
Windows Server 2016
Server Core
KB5073722
Standard
KB5073722
Windows Server 2019
Server Core
KB5073723
Standard
KB5073723
Windows Server 2022
23H2 Server Core
KB5073450
Server Core
KB5073457
Standard
KB5073457
Windows Server 2025
Server Core
KB5073379
Standard
KB5073379
Debian logo
Debian Releases
Debian Product
Codename
sqlite3
bookworm
3.40.1-2+deb12u2
fixed
bullseye
postponed
bullseye (security)
vulnerable
forky
3.46.1-9
fixed
sid
3.46.1-9
fixed
trixie
3.46.1-7+deb13u1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
sqlite3
bionic
Fixed 3.22.0-1ubuntu0.7+esm2
released
focal
Fixed 3.31.1-4ubuntu0.7+esm1
released
jammy
Fixed 3.37.2-2ubuntu0.5
released
noble
Fixed 3.45.1-1ubuntu2.4
released
plucky
Fixed 3.46.1-3ubuntu0.2
released
questing
Fixed 3.46.1-6ubuntu1
released
resolute
Fixed 3.46.1-6ubuntu1
released
trusty
Fixed 3.8.2-1ubuntu2.2+esm5
released
xenial
Fixed 3.11.0-1ubuntu1.5+esm3
released
sqlite
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
dne
plucky
dne
questing
dne
resolute
dne
trusty
needs-triage
xenial
ignored
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libsqlite3-0
suse enterprise desktop 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise desktop 15 SP7
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP3
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP4
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP5
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP7
3.50.2-150000.3.33.1
fixed
suse enterprise server 12 SP3
3.50.2-9.41.1
fixed
suse enterprise server 12 SP5
3.50.2-9.41.1
fixed
suse enterprise server 15 SP2
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP3
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP4
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP5
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP7
3.50.2-150000.3.33.1
fixed
libsqlite3-0-32bit
suse enterprise desktop 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise desktop 15 SP7
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP3
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP4
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP5
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP7
3.50.2-150000.3.33.1
fixed
suse enterprise server 12 SP3
3.50.2-9.41.1
fixed
suse enterprise server 12 SP5
3.50.2-9.41.1
fixed
suse enterprise server 15 SP2
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP3
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP4
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP5
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP7
3.50.2-150000.3.33.1
fixed
sqlite3
suse enterprise desktop 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise desktop 15 SP7
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP3
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP4
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP5
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP7
3.50.2-150000.3.33.1
fixed
suse enterprise server 12 SP3
3.50.2-9.41.1
fixed
suse enterprise server 12 SP5
3.50.2-9.41.1
fixed
suse enterprise server 15 SP2
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP3
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP4
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP5
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP7
3.50.2-150000.3.33.1
fixed
sqlite3-devel
suse enterprise desktop 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise desktop 15 SP7
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP3
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP4
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP5
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP7
3.50.2-150000.3.33.1
fixed
suse enterprise server 12 SP3
3.50.2-9.41.1
fixed
suse enterprise server 12 SP5
3.50.2-9.41.1
fixed
suse enterprise server 15 SP2
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP3
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP4
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP5
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP7
3.50.2-150000.3.33.1
fixed
sqlite3-tcl
suse enterprise desktop 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise desktop 15 SP7
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP3
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP4
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP5
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise sap 15 SP7
3.50.2-150000.3.33.1
fixed
suse enterprise server 12 SP3
3.50.2-9.41.1
fixed
suse enterprise server 12 SP5
3.50.2-9.41.1
fixed
suse enterprise server 15 SP2
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP3
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP4
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP5
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP6
3.50.2-150000.3.33.1
fixed
suse enterprise server 15 SP7
3.50.2-150000.3.33.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
lemon
RHEL 8
0:3.26.0-20.el8_10
fixed
RHEL 8.2 AUS
0:3.26.0-6.el8_2.1
fixed
RHEL 8.4 AUS
0:3.26.0-13.el8_4.1
fixed
RHEL 8.6 AUS
0:3.26.0-16.el8_6.3
fixed
RHEL 8.6 E4S
0:3.26.0-16.el8_6.3
fixed
RHEL 8.6 TUS
0:3.26.0-16.el8_6.3
fixed
RHEL 8.8 E4S
0:3.26.0-18.el8_8.2
fixed
RHEL 8.8 TUS
0:3.26.0-18.el8_8.2
fixed
mingw32-sqlite
RHEL 8
0:3.26.0.0-2.el8_10
fixed
mingw32-sqlite-static
RHEL 8
0:3.26.0.0-2.el8_10
fixed
mingw64-sqlite
RHEL 8
0:3.26.0.0-2.el8_10
fixed
mingw64-sqlite-static
RHEL 8
0:3.26.0.0-2.el8_10
fixed
spice-client-win-x64
RHEL 8.2 AUS
0:8.10-3.el8_2.1
fixed
RHEL 8.4 AUS
0:8.10-3.el8_4.1
fixed
RHEL 8.6 AUS
0:8.10-3.el8_6.1
fixed
RHEL 8.6 E4S
0:8.10-3.el8_6.1
fixed
RHEL 8.6 TUS
0:8.10-3.el8_6.1
fixed
RHEL 8.8 E4S
0:8.10-3.el8_8.1
fixed
RHEL 8.8 TUS
0:8.10-3.el8_8.1
fixed
spice-client-win-x86
RHEL 8.2 AUS
0:8.10-3.el8_2.1
fixed
RHEL 8.4 AUS
0:8.10-3.el8_4.1
fixed
RHEL 8.6 AUS
0:8.10-3.el8_6.1
fixed
RHEL 8.6 E4S
0:8.10-3.el8_6.1
fixed
RHEL 8.6 TUS
0:8.10-3.el8_6.1
fixed
RHEL 8.8 E4S
0:8.10-3.el8_8.1
fixed
RHEL 8.8 TUS
0:8.10-3.el8_8.1
fixed
sqlite
RHEL 8
0:3.26.0-20.el8_10
fixed
RHEL 8.2 AUS
0:3.26.0-6.el8_2.1
fixed
RHEL 8.4 AUS
0:3.26.0-13.el8_4.1
fixed
RHEL 8.6 AUS
0:3.26.0-16.el8_6.3
fixed
RHEL 8.6 E4S
0:3.26.0-16.el8_6.3
fixed
RHEL 8.6 TUS
0:3.26.0-16.el8_6.3
fixed
RHEL 8.8 E4S
0:3.26.0-18.el8_8.2
fixed
RHEL 8.8 TUS
0:3.26.0-18.el8_8.2
fixed
RHEL 9
0:3.34.1-9.el9_7
fixed
sqlite-devel
RHEL 8
0:3.26.0-20.el8_10
fixed
RHEL 8.2 AUS
0:3.26.0-6.el8_2.1
fixed
RHEL 8.4 AUS
0:3.26.0-13.el8_4.1
fixed
RHEL 8.6 AUS
0:3.26.0-16.el8_6.3
fixed
RHEL 8.6 E4S
0:3.26.0-16.el8_6.3
fixed
RHEL 8.6 TUS
0:3.26.0-16.el8_6.3
fixed
RHEL 8.8 E4S
0:3.26.0-18.el8_8.2
fixed
RHEL 8.8 TUS
0:3.26.0-18.el8_8.2
fixed
RHEL 9
0:3.34.1-9.el9_7
fixed
sqlite-doc
RHEL 8
0:3.26.0-20.el8_10
fixed
RHEL 8.2 AUS
0:3.26.0-6.el8_2.1
fixed
RHEL 8.4 AUS
0:3.26.0-13.el8_4.1
fixed
RHEL 8.6 AUS
0:3.26.0-16.el8_6.3
fixed
RHEL 8.6 E4S
0:3.26.0-16.el8_6.3
fixed
RHEL 8.6 TUS
0:3.26.0-16.el8_6.3
fixed
RHEL 8.8 E4S
0:3.26.0-18.el8_8.2
fixed
RHEL 8.8 TUS
0:3.26.0-18.el8_8.2
fixed
sqlite-libs
RHEL 8
0:3.26.0-20.el8_10
fixed
RHEL 8.2 AUS
0:3.26.0-6.el8_2.1
fixed
RHEL 8.4 AUS
0:3.26.0-13.el8_4.1
fixed
RHEL 8.6 AUS
0:3.26.0-16.el8_6.3
fixed
RHEL 8.6 E4S
0:3.26.0-16.el8_6.3
fixed
RHEL 8.6 TUS
0:3.26.0-16.el8_6.3
fixed
RHEL 8.8 E4S
0:3.26.0-18.el8_8.2
fixed
RHEL 8.8 TUS
0:3.26.0-18.el8_8.2
fixed
RHEL 9
0:3.34.1-9.el9_7
fixed
Common Weakness Enumeration
References
https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8
http://seclists.org/fulldisclosure/2025/Sep/49
http://seclists.org/fulldisclosure/2025/Sep/53
http://seclists.org/fulldisclosure/2025/Sep/56
http://seclists.org/fulldisclosure/2025/Sep/57
http://seclists.org/fulldisclosure/2025/Sep/58
http://www.openwall.com/lists/oss-security/2025/09/06/1
https://cert-portal.siemens.com/productcert/html/ssa-225816.html
https://cert-portal.siemens.com/productcert/html/ssa-485750.html