npm package
sqlite-vec
pkg:npm/sqlite-vec
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-46488 | — | < 0.1.3 | 0.1.3 | Sep 25, 2024 | sqlite-vec v0.1.1 was discovered to contain a heap buffer overflow via the npy_token_next function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. |
- CVE-2024-46488Sep 25, 2024affected < 0.1.3fixed 0.1.3
sqlite-vec v0.1.1 was discovered to contain a heap buffer overflow via the npy_token_next function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file.