All 2 CVE vulnerabilities found in duckdb, with AI-generated Chinese analysis, references, and POCs.
Vendor: duckdb
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-64429 | DuckDB Encryption Crypto implementation is vulnerable CWE-327 | 9.1 | - | 2025-11-12 |
| CVE-2024-41672 | DuckDB: sniff_csv provides filesystem access even when enable_external_access is disabled CWE-200 | 7.5 | High | 2024-07-24 |
All 2 known CVE vulnerabilities affecting duckdb with full Chinese analysis, references, and POCs where available.