{"id":"CVE-2019-5018","details":"An exploitable use after free vulnerability exists in the window function functionality of Sqlite3 3.26.0. A specially crafted SQL command can cause a use after free vulnerability, potentially resulting in remote code execution. An attacker can send a malicious SQL command to trigger this vulnerability.","modified":"2026-07-07T08:50:13.928410256Z","published":"2019-05-10T19:29:07.747Z","database_specific":{"unresolved_ranges":[{"vendor_product":"canonical:ubuntu_linux","cpes":["cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*"],"extracted_events":[{"introduced":"12.04"},{"last_affected":"12.04"},{"introduced":"16.04"},{"last_affected":"16.04"},{"introduced":"18.04"},{"last_affected":"18.04"},{"introduced":"19.04"},{"last_affected":"19.04"},{"introduced":"19.10"},{"last_affected":"19.10"}],"source":"CPE_STRING"}]},"references":[{"type":"WEB","url":"http://www.securityfocus.com/bid/108294"},{"type":"ADVISORY","url":"http://packetstormsecurity.com/files/152809/Sqlite3-Window-Function-Remote-Code-Execution.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201908-09"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20190521-0001/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4205-1/"},{"type":"EVIDENCE","url":"https://talosintelligence.com/vulnerability_reports/TALOS-2019-0777"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/sqlite/sqlite","events":[{"introduced":"4f939e86df7a40fb212f61b1b7ca6db43427f0b5"},{"last_affected":"4f939e86df7a40fb212f61b1b7ca6db43427f0b5"}],"database_specific":{"cpe":"cpe:2.3:a:sqlite:sqlite:3.26.0:*:*:*:*:*:*:*","extracted_events":[{"introduced":"3.26.0"},{"last_affected":"3.26.0"}],"source":"CPE_STRING"}}],"versions":["3.26.0","version-3.26.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-5018.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}