Tuesday, September 10, 2024
HomeCyber Security NewsCritical SQLite Bug Affected all Modern Operating Systems and Software

Critical SQLite Bug Affected all Modern Operating Systems and Software

Published on

A critical security vulnerability that exists in SQLite affects all the modern mainstream operating systems and software.

The vulnerability was discovered by Tencent Blade Team, the vulnerability has a wide range of impact as it affects the SQLite database management system that used by thousands of operating systems and software.

SQLite is a software library that provides a relational database management system. The lite in SQLite means light-weight in terms of setup, database administration, and required resource.

- Advertisement - EHA

The remote code execution vulnerability dubbed Magellan allows a remote attacker to run a malicious code in a target machine or in a target process that leads to Remote code execution, leaking program memory or causing program crashes.

This SQLite bug can be triggered, if the victim explores a simple webpage in the browser that uses SQLite and the Web SQL API.

“According to Tencent Blade Team, if you use a device or software that uses SQLite or Chromium then you will be affected.”

Tencent test confirmed that SQLite bug exists with the Chromium, Google confirmed it and fixed the vulnerability with version 71.0.3578.80.If your product uses SQLite then it is recommended updating to 3.26.0.

We will not disclose any details of the vulnerability at this time, and we are pushing other vendors to fix this vulnerability as soon as possible, reads the security advisory published by Tencent Blade Team.

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.

Related Read

66 Million Users Personal Data Exposed From Unprotected MongoDB Database

Hackers Stolen 500 Million Guests Personal Information From Starwood Hotels Guest Reservation Database

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Chinese Hackers Using Open Source Tools To Launch Cyber Attacks

Three Chinese state-backed threat groups, APT10, GALLIUM, and Stately Taurus, have repeatedly employed a...

Small Business, Big Threats: INE Security Launches Initiative to Train SMBs to Close a Critical Skills Gap

As cyber threats grow, small to medium-sized businesses (SMBs) are disproportionately targeted. According to...

Researchers Details Attacks On Air-Gaps Computers To Steal Data

The air-gap data protection method isolates local networks from the internet to mitigate cyber...

Beware Of Malicious Chrome Extension That Delivers Weaponized ZIP Archive

In August 2024, researchers detected a malicious Google Chrome browser infection that led to...

Free Webinar

Decoding Compliance | What CISOs Need to Know

Non-compliance can result in substantial financial penalties, with average fines reaching up to $4.5 million for GDPR breaches alone.

Join us for an insightful panel discussion with Chandan Pani, CISO - LTIMindtree and Ashish Tandon, Founder & CEO – Indusface, as we explore the multifaceted role of compliance in securing modern enterprises.

Discussion points

The Role of Compliance
The Alphabet Soup of Compliance
Compliance
SaaS and Compliance
Indusface's Approach to Compliance

More like this

Researchers Details Attacks On Air-Gaps Computers To Steal Data

The air-gap data protection method isolates local networks from the internet to mitigate cyber...

Beware Of Malicious Chrome Extension That Delivers Weaponized ZIP Archive

In August 2024, researchers detected a malicious Google Chrome browser infection that led to...

CISA Issues Warning About Three Actively Exploited Vulnerabilities in the Wild

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about three...