V
Vexday
by TrueHacking
›
PT
ES
EN
Intelligence
▾
Intelligence
Exploit Timeline
risk queue
Threats
ransomware · malware
Overview
observatory
Explore
▾
Explore
CVEs
Technologies
Vendors
Weakness types
Briefing
Live
Home
/
Technologies
/
duckdb
Vulnerabilities in
duckdb
3 results
CVE-2024-41672
HIGH
DuckDB: sniff_csv provides filesystem access even when enable_external_access is disabled
EPSS
0.8%
CVE-2025-59037
HIGH
DuckDB NPM packages 1.3.3 and 1.29.2 briefly compromised with malware
EPSS
0.3%
CVE-2025-64429
MEDIUM
DuckDB Encryption Crypto implementation is vulnerable
EPSS
0.1%