CyberRota
← Ana sayfaya dön

CVE-2025-71316

CRITICAL · CVSS 9.8 EPSS %0.38

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-04T19:16:27.170 · Çekilme zamanı: 2026-06-30T12:10:14.277893+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2025-71316
Severity
CRITICAL
CVSS
9.8
EPSS
%0.38
Microsoft Windows

Orijinal NVD Açıklaması

SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being misinterpreted as command line options. Fixed on or around 2025-12-26.