CVE-2025-70873

Published: Mar 12, 2026

Modified: Mar 14, 2026

PUBLISHED

Description

An information disclosure issue in the zipfileInflate function in the zipfile extension in SQLite v3.51.1 and earlier allows attackers to obtain heap memory via supplying a crafted ZIP file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://sqlite.org/forum/forumpost/761eac3c82

https://sqlite.org/src/info/3d459f1fb1bd1b5e

https://gist.github.com/cnwangjihe/f496393f30f5ecec5b18c8f5ab072054

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-70873

Description

Affected Products

References