The package sqlite3 before 5.0.3 are vulnerable to Denial of Service (DoS) which will invoke the toString function of the passed parameter. If passed an invalid Function object it will throw and crash the V8 engine.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: snyk

Published: 2022-05-01T15:25:15.734329Z

Updated: 2024-09-16T18:48:34.205Z

Reserved: 2022-02-24T00:00:00

Link: CVE-2022-21227

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-05-01T16:15:08.197

Modified: 2024-11-21T06:44:09.070

Link: CVE-2022-21227

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-05-01T00:00:00Z

Links: CVE-2022-21227 - Bugzilla