[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-20346":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":42,"duplicate_of":9,"upstream":43,"downstream":44,"duplicates":75,"related":76,"reserved_at":9,"published_at":84,"modified_at":85,"state":86,"summary":87,"references_raw":95,"kevs":245,"epss":246,"epss_history":249,"metrics":496,"affected":507},"CVE-2018-20346","SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries that occur after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases), aka Magellan.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-190","Integer Overflow or Wraparound","The product performs a calculation that can\n         produce an integer overflow or wraparound when the logic\n         assumes that the resulting value will always be larger than\n         the original value. This occurs when an integer value is\n         incremented to a value that is too large to store in the\n         associated representation. When this occurs, the value may\n         become a very small or negative number.","weakness","Stable","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-92","Forced Integer Overflow",[],[25,34],{"_key":26,"name":27,"source":28,"url":29,"maturity":30,"reliability_score":31,"verified":32,"type":9,"platforms":33,"requires_auth":9,"exploitdb":9,"metasploit":9},"GITHUB_ZHUOWEI_WORTHDOINGBADLY.COM","Worthdoingbadly.Com","github","https://github.com/zhuowei/worthdoingbadly.com/blob/master/_posts/2018-12-14-sqlitebug.html","poc",0.3,false,[],{"_key":35,"name":36,"source":37,"url":38,"maturity":39,"reliability_score":40,"verified":32,"type":9,"platforms":41,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_60F65F6749866E45","Exploit Reference (worthdoingbadly.com)","reference","https://worthdoingbadly.com/sqlitebug/","unknown",0.2,[],[],[],[45,47,49,51,53,55,57,59,61,63,65,67,69,71,73],{"_key":46},"ALPINE-CVE-2018-20346",{"_key":48},"SUSE-SU-2019:0788-1",{"_key":50},"SUSE-SU-2019:0913-1",{"_key":52},"SUSE-SU-2019:0973-1",{"_key":54},"SUSE-SU-2019:14003-1",{"_key":56},"SUSE-SU-2021:3215-1",{"_key":58},"OPENSUSE-SU-2019:1159-1",{"_key":60},"DLA-1613-1",{"_key":62},"DLA-2340-1",{"_key":64},"DSA-4352-1",{"_key":66},"MGASA-2018-0489",{"_key":68},"UBUNTU-CVE-2018-20346",{"_key":70},"USN-4019-1",{"_key":72},"USN-4019-2",{"_key":74},"DEBIAN-CVE-2018-20346",[],[77,78,79,80,81,82,83],{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":66},"2018-12-21T21:00:00.000Z","2024-08-05T11:58:19.161Z","Modified",{"cisa_kev":32,"cisa_ransomware":32,"cisa_vendor":9,"epss_severity":88,"epss_score":89,"severity":90,"severity_score":91,"severity_version":92,"severity_source":93,"severity_vector":94,"severity_status":86},"medium",0.13522,"high",8.1,"v3.0","nvd","CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",[96,103,108,113,117,123,127,131,135,139,143,146,150,154,159,163,167,171,177,182,186,192,196,201,205,210,214,219,224,228,233,237,241],{"url":38,"sources":97,"tags":99},[98,93],"cve.org",[100,101,102],"X Refsource MISC","Exploit","Third Party Advisory",{"url":104,"sources":105,"tags":106},"https://support.apple.com/HT209446",[98,93],[107],"X Refsource CONFIRM",{"url":109,"sources":110,"tags":111},"https://bugzilla.redhat.com/show_bug.cgi?id=1659379",[98,93],[100,112,102],"Issue Tracking",{"url":114,"sources":115,"tags":116},"https://bugzilla.redhat.com/show_bug.cgi?id=1659677",[98,93],[100,112,102],{"url":118,"sources":119,"tags":120},"https://lists.debian.org/debian-lts-announce/2018/12/msg00012.html",[98,93],[121,122,102],"Mailing List","X Refsource MLIST",{"url":124,"sources":125,"tags":126},"https://www.synology.com/security/advisory/Synology_SA_18_61",[98,93],[107,102],{"url":128,"sources":129,"tags":130},"https://access.redhat.com/articles/3758321",[98,93],[100,102],{"url":132,"sources":133,"tags":134},"https://support.apple.com/HT209443",[98,93],[107],{"url":136,"sources":137,"tags":138},"https://blade.tencent.com/magellan/index_en.html",[98,93],[100,102],{"url":140,"sources":141,"tags":142},"https://support.apple.com/HT209451",[98,93],[107],{"url":29,"sources":144,"tags":145},[98,93],[100,101,102],{"url":147,"sources":148,"tags":149},"https://news.ycombinator.com/item?id=18685296",[98,93],[100,102],{"url":151,"sources":152,"tags":153},"https://support.apple.com/HT209450",[98,93],[107],{"url":155,"sources":156,"tags":157},"https://sqlite.org/src/info/940f2adc8541a838",[98,93],[100,158,102],"Patch",{"url":160,"sources":161,"tags":162},"https://support.apple.com/HT209448",[98,93],[107],{"url":164,"sources":165,"tags":166},"https://chromium.googlesource.com/chromium/src/+/c368e30ae55600a1c3c9cb1710a54f9c55de786e",[98,93],[100,102],{"url":168,"sources":169,"tags":170},"https://www.mail-archive.com/sqlite-users%40mailinglists.sqlite.org/msg113218.html",[98,93],[100],{"url":172,"sources":173,"tags":174},"http://www.securityfocus.com/bid/106323",[98,93],[175,176,102],"VDB Entry","X Refsource BID",{"url":178,"sources":179,"tags":180},"https://crbug.com/900910",[98,93],[100,181,102],"Permissions Required",{"url":183,"sources":184,"tags":185},"https://sqlite.org/src/info/d44318f59044162e",[98,93],[100,158,102],{"url":187,"sources":188,"tags":189},"https://www.freebsd.org/security/advisories/FreeBSD-EN-19:03.sqlite.asc",[98,93],[190,191,102],"Vendor Advisory","X Refsource FREEBSD",{"url":193,"sources":194,"tags":195},"https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html",[98,93],[100,102],{"url":197,"sources":198,"tags":199},"https://www.sqlite.org/releaselog/3_25_3.html",[98,93],[100,200,190],"Release Notes",{"url":202,"sources":203,"tags":204},"https://support.apple.com/HT209447",[98,93],[107],{"url":206,"sources":207,"tags":208},"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00040.html",[98,93],[190,209,102],"X Refsource SUSE",{"url":211,"sources":212,"tags":213},"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00070.html",[98,93],[190,209,121,102],{"url":215,"sources":216,"tags":217},"https://security.gentoo.org/glsa/201904-21",[98,93],[190,218,102],"X Refsource GENTOO",{"url":220,"sources":221,"tags":222},"https://usn.ubuntu.com/4019-1/",[98,93],[190,223],"X Refsource UBUNTU",{"url":225,"sources":226,"tags":227},"https://usn.ubuntu.com/4019-2/",[98,93],[190,223],{"url":229,"sources":230,"tags":231},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU4NZ6DDU4BEM3ACM3FM6GLEPX56ZQXK/",[98,93],[190,232],"X Refsource FEDORA",{"url":234,"sources":235,"tags":236},"https://www.oracle.com/security-alerts/cpuapr2020.html",[98,93],[100],{"url":238,"sources":239,"tags":240},"https://lists.debian.org/debian-lts-announce/2020/08/msg00037.html",[98,93],[121,122],{"url":242,"sources":243,"tags":244},"https://kc.mcafee.com/corporate/index?page=content&id=SB10365",[98,93],[107],[],{"date":247,"score":89,"percentile":248},"2026-06-04",0.94352,[250,254,256,258,261,264,266,268,270,273,275,278,280,282,284,288,290,293,296,299,301,304,307,310,313,315,318,321,324,327,330,334,337,339,342,346,349,352,355,358,360,362,365,368,371,374,376,379,381,383,386,389,392,395,398,401,404,407,410,413,416,419,421,424,426,428,431,434,437,439,441,443,446,449,452,455,458,461,463,466,469,472,475,478,481,483,486,488,490,493],{"date":251,"score":252,"percentile":253},"2025-11-04",0.17562,0.94802,{"date":255,"score":252,"percentile":253},"2025-11-05",{"date":257,"score":252,"percentile":253},"2025-11-06",{"date":259,"score":252,"percentile":260},"2025-11-07",0.94804,{"date":262,"score":252,"percentile":263},"2025-11-08",0.94801,{"date":265,"score":252,"percentile":263},"2025-11-09",{"date":267,"score":252,"percentile":253},"2025-11-10",{"date":269,"score":252,"percentile":260},"2025-11-11",{"date":271,"score":252,"percentile":272},"2025-11-12",0.94807,{"date":274,"score":252,"percentile":272},"2025-11-13",{"date":276,"score":252,"percentile":277},"2025-11-14",0.94809,{"date":279,"score":252,"percentile":260},"2025-11-15",{"date":281,"score":252,"percentile":272},"2025-11-16",{"date":283,"score":252,"percentile":277},"2025-11-17",{"date":285,"score":286,"percentile":287},"2025-11-18",0.37396,0.96989,{"date":289,"score":286,"percentile":287},"2025-11-19",{"date":291,"score":286,"percentile":292},"2025-11-20",0.96991,{"date":294,"score":252,"percentile":295},"2025-11-21",0.94814,{"date":297,"score":252,"percentile":298},"2025-11-22",0.94813,{"date":300,"score":252,"percentile":295},"2025-11-23",{"date":302,"score":252,"percentile":303},"2025-11-24",0.94815,{"date":305,"score":252,"percentile":306},"2025-11-25",0.94818,{"date":308,"score":252,"percentile":309},"2025-11-26",0.94819,{"date":311,"score":252,"percentile":312},"2025-11-27",0.94821,{"date":314,"score":252,"percentile":306},"2025-11-28",{"date":316,"score":252,"percentile":317},"2025-11-29",0.94823,{"date":319,"score":252,"percentile":320},"2025-11-30",0.94822,{"date":322,"score":252,"percentile":323},"2025-12-01",0.94866,{"date":325,"score":252,"percentile":326},"2025-12-02",0.94867,{"date":328,"score":252,"percentile":329},"2025-12-03",0.94868,{"date":331,"score":332,"percentile":333},"2025-12-04",0.17015,0.94718,{"date":335,"score":332,"percentile":336},"2025-12-05",0.94722,{"date":338,"score":332,"percentile":336},"2025-12-06",{"date":340,"score":332,"percentile":341},"2025-12-07",0.94727,{"date":343,"score":344,"percentile":345},"2025-12-08",0.13215,0.93865,{"date":347,"score":344,"percentile":348},"2025-12-09",0.9387,{"date":350,"score":344,"percentile":351},"2025-12-10",0.93876,{"date":353,"score":344,"percentile":354},"2025-12-11",0.93879,{"date":356,"score":344,"percentile":357},"2025-12-12",0.9388,{"date":359,"score":344,"percentile":357},"2025-12-13",{"date":361,"score":344,"percentile":354},"2025-12-14",{"date":363,"score":344,"percentile":364},"2025-12-15",0.93882,{"date":366,"score":344,"percentile":367},"2025-12-16",0.93885,{"date":369,"score":344,"percentile":370},"2025-12-17",0.9389,{"date":372,"score":344,"percentile":373},"2025-12-18",0.93893,{"date":375,"score":344,"percentile":373},"2025-12-19",{"date":377,"score":344,"percentile":378},"2025-12-20",0.93892,{"date":380,"score":344,"percentile":373},"2025-12-21",{"date":382,"score":344,"percentile":373},"2025-12-22",{"date":384,"score":344,"percentile":385},"2025-12-23",0.93894,{"date":387,"score":344,"percentile":388},"2025-12-24",0.93898,{"date":390,"score":344,"percentile":391},"2025-12-25",0.93906,{"date":393,"score":344,"percentile":394},"2025-12-26",0.93904,{"date":396,"score":344,"percentile":397},"2025-12-27",0.93948,{"date":399,"score":344,"percentile":400},"2025-12-28",0.93901,{"date":402,"score":344,"percentile":403},"2025-12-29",0.939,{"date":405,"score":344,"percentile":406},"2025-12-30",0.93902,{"date":408,"score":344,"percentile":409},"2025-12-31",0.93907,{"date":411,"score":344,"percentile":412},"2026-01-01",0.93951,{"date":414,"score":344,"percentile":415},"2026-01-02",0.93947,{"date":417,"score":344,"percentile":418},"2026-01-03",0.93944,{"date":420,"score":344,"percentile":406},"2026-01-04",{"date":422,"score":344,"percentile":423},"2026-01-05",0.93899,{"date":425,"score":344,"percentile":423},"2026-01-06",{"date":427,"score":344,"percentile":403},"2026-01-07",{"date":429,"score":344,"percentile":430},"2026-01-08",0.93903,{"date":432,"score":344,"percentile":433},"2026-01-09",0.93905,{"date":435,"score":344,"percentile":436},"2026-01-10",0.93908,{"date":438,"score":344,"percentile":433},"2026-01-11",{"date":440,"score":344,"percentile":430},"2026-01-12",{"date":442,"score":344,"percentile":394},"2026-01-13",{"date":444,"score":344,"percentile":445},"2026-01-14",0.93913,{"date":447,"score":344,"percentile":448},"2026-01-15",0.93914,{"date":450,"score":344,"percentile":451},"2026-01-16",0.93919,{"date":453,"score":344,"percentile":454},"2026-01-17",0.93924,{"date":456,"score":344,"percentile":457},"2026-01-18",0.9392,{"date":459,"score":344,"percentile":460},"2026-01-19",0.93918,{"date":462,"score":344,"percentile":451},"2026-01-20",{"date":464,"score":344,"percentile":465},"2026-01-21",0.93922,{"date":467,"score":344,"percentile":468},"2026-01-22",0.93926,{"date":470,"score":344,"percentile":471},"2026-01-23",0.93933,{"date":473,"score":344,"percentile":474},"2026-01-24",0.93936,{"date":476,"score":344,"percentile":477},"2026-01-25",0.93938,{"date":479,"score":344,"percentile":480},"2026-01-26",0.9394,{"date":482,"score":344,"percentile":480},"2026-01-27",{"date":484,"score":344,"percentile":485},"2026-01-28",0.93943,{"date":487,"score":344,"percentile":418},"2026-01-29",{"date":489,"score":344,"percentile":418},"2026-01-30",{"date":491,"score":344,"percentile":492},"2026-01-31",0.93946,{"date":494,"score":344,"percentile":495},"2026-02-01",0.93984,[497],{"source":93,"cvss_v2_0":498,"cvss_v3_0":503,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":499,"baseSeverity":9,"vectorString":500,"impactScore":501,"exploitabilityScore":502},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":91,"baseSeverity":504,"vectorString":94,"impactScore":505,"exploitabilityScore":506},"HIGH",9.8,5.6,[508,517,527,535,541],{"ecosystem":9,"name":509,"vendor":510,"product":511,"cpe_part":512,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":513},"debian linux","debian","debian_linux","o",[514],{"version":515,"is_range":32,"range_type":516,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0","cpe",{"ecosystem":9,"name":518,"vendor":519,"product":518,"cpe_part":520,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":521},"chrome","google","a",[522],{"version":523,"is_range":524,"range_type":516,"version_start":9,"version_start_type":9,"version_end":525,"version_end_type":526,"fixed_in":9},"lt71.0.3578.80",true,"71.0.3578.80","excluding",{"ecosystem":9,"name":528,"vendor":529,"product":528,"cpe_part":512,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":530},"leap","opensuse",[531,533],{"version":532,"is_range":32,"range_type":516,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.0",{"version":534,"is_range":32,"range_type":516,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"42.3",{"ecosystem":9,"name":536,"vendor":537,"product":536,"cpe_part":512,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":538},"linux","redhat",[539],{"version":540,"is_range":32,"range_type":516,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"ecosystem":9,"name":542,"vendor":542,"product":542,"cpe_part":520,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":543},"sqlite",[544],{"version":545,"is_range":524,"range_type":516,"version_start":9,"version_start_type":9,"version_end":546,"version_end_type":526,"fixed_in":9},"lt3.25.3","3.25.3"]