SQLite
Security Risk Profile
68
/100
highSecurity Risk Score
Comprehensive risk assessment based on 94 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from August 17, 2000 to present
94
Total CVEs
55
Critical+High
1
Exploited
11
Unpatched
Threat Assessment
Avg CVSS
6.9
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
11
Critical/High
Risk Level
68/100
high
⚠️ 1 Active Exploits🆕 2Fresh (<7d)📈 3 in Last 30 Days
Severity Distribution
Critical
12High
43Medium
29Low
0Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
5Age Distribution
Common Weaknesses (CWE)
1
SQL Injection
84
2
Buffer Overflow
15
3
Null Pointer Dereference
13
4
Integer Overflow
11
5
Use After Free
8
Most Affected Products
1. SQLite SQLite94
2. Canonical Ubuntu Linux61
3. debian/sqlite335
4. FreeBSD FreeBSD24
5. Oracle Communications Network Charging And Control23
Recent Vulnerabilities
See more →CVE-2026-11824
CVSS 8.5high
SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate
6/9/2026
CVE-2026-11822
CVSS 8.5high
SQLite before 3.53.2 Memory Corruption in FTS5 Extension
6/9/2026
CVE-2025-71316
CVSS 9.2critical
SQLite sqldiff remote code execution via argument injection
6/4/2026🔧 No Patch
CVE-2025-70873
CVSS 7.5high
3/12/2026
CVE-2025-52099
CVSS 7.5high
10/24/2025🔧 No Patch
CVE-2025-57141
CVSS 9.8critical
9/8/2025🔧 No Patch
CVE-2025-7709
CVSS 6.9medium
Out Of Bounds write in FTS5 Extension in SQLite
9/6/2025🔧 No Patch
https://seclists.org/oss-sec/2025/q3/150
unknown
SQLite - Integer Overflow in FTS5 Extension [CVE-2025-7709]
9/6/2025🔧 No Patch
https://seclists.org/oss-sec/2025/q3/149
unknown
SQLite: Integer truncation in findOrCateAggInfoColumn [CVE-2025-6965]
9/6/2025🔧 No Patch
CVE-2025-7458
CVSS 9.1EPSS 0%critical
SQLite integer overflow in key info allocation may lead to information disclosure.
7/29/2025
Monitor SQLite in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.