CVE-2023-7104 | SQLite SQLite3 up to 3.43.0 make alltest sqlite3session.c sessionReadRecord heap-based overflow (FEDORA-2024-210776b8c7 / Nessus ID 207951)

A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow.

The identification of this vulnerability is CVE-2023-7104. The attack can only be initiated within the local network. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.