Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:maven/org.xerial/sqlite-jdbc@3.41.2.2
Typemaven
Namespaceorg.xerial
Namesqlite-jdbc
Version3.41.2.2
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-jgbb-tpub-cybe
vulnerability_id VCID-jgbb-tpub-cybe
summary 
Improper Control of Generation of Code ('Code Injection')
SQLite JDBC is a library for accessing and creating SQLite database files in Java. Sqlite-jdbc addresses a remote code execution vulnerability via JDBC URL. This issue impacting versions 3.6.14.1 through 3.41.2.1 and has been fixed in version 3.41.2.2.
references
0
reference_url https://github.com/xerial/sqlite-jdbc/releases/tag/3.41.2.2
reference_id
reference_type
scores
url https://github.com/xerial/sqlite-jdbc/releases/tag/3.41.2.2
1
reference_url https://github.com/advisories/GHSA-6phf-6h5g-97j2
reference_id GHSA-6phf-6h5g-97j2
reference_type
scores
url https://github.com/advisories/GHSA-6phf-6h5g-97j2
2
reference_url https://github.com/xerial/sqlite-jdbc/security/advisories/GHSA-6phf-6h5g-97j2
reference_id GHSA-6phf-6h5g-97j2
reference_type
scores
url https://github.com/xerial/sqlite-jdbc/security/advisories/GHSA-6phf-6h5g-97j2
fixed_packages
0
url pkg:maven/org.xerial/sqlite-jdbc@3.41.2.2
purl pkg:maven/org.xerial/sqlite-jdbc@3.41.2.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.xerial/sqlite-jdbc@3.41.2.2
aliases CVE-2023-32697, GHSA-6phf-6h5g-97j2
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jgbb-tpub-cybe
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:maven/org.xerial/sqlite-jdbc@3.41.2.2