CVE-2025-6965

Published Jul 15, 2025

Last updated 3 days ago

CVSS high 7.2
SQLite

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-6965 is a vulnerability that exists in SQLite versions prior to 3.50.2. The vulnerability occurs because the number of aggregate terms in a query can exceed the available number of columns. This can lead to memory corruption. To resolve this vulnerability, it is recommended to upgrade to SQLite version 3.50.2 or later. This update mitigates the risk of memory corruption and potential instability within applications using the affected SQLite versions.

Description
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.
Source
cve-coordination@google.com
NVD status
Awaiting Analysis

Risk scores

CVSS 4.0

Type
Secondary
Base score
7.2
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green
Severity
HIGH

Weaknesses

cve-coordination@google.com
CWE-197

Social media

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score

7

  1. GOOGLE'S COSAI: SECURE AI FRAMEWORK Google advances cybersecurity with AI agent Big Sleep, discovering vulnerabilities like CVE-2025-6965 in SQLite. Developed by DeepMind and Project Zero, it bolsters open-source security, detailed in a new white paper. https://t.co/fyWz300VPq

    @ai_24x7

    18 Jul 2025

    46 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  2. 🧠 An AI tool from Google now stops hackers before they strike. Big Sleep doesn’t react. It predicts and prevents attacks. And it just stopped a real-world exploit (CVE-2025-6965). https://t.co/mUJI43sIVX https://t.co/Kplr6EqX3U

    @EntrepreneursAI

    17 Jul 2025

    29 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  3. لأول مرة: ذكاء اصطناعي من @Google يمنع استغلال ثغرة حرجة قبل وقوعها أداة Big Sleep رصدت CVE-2025-6965 في SQLite مبكراً باستخدام تحليل استخبارات التهديدات والتعلم الآلي، م

    @cyberscastx

    17 Jul 2025

    2073 Impressions

    2 Retweets

    17 Likes

    9 Bookmarks

    2 Replies

    0 Quotes

  4. 🤯 @Google’s Big Sleep AI agent successfully detected and prevented a critical vulnerability in SQLite (CVE-2025-6965) before hackers managed to exploit it, the first time an AI system has proactively thwarted a real cyberattack. Developed by Google DeepMind and Project Zero

    @KamiruShigatsu

    16 Jul 2025

    35 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. 🤯 Google’s Big Sleep AI agent successfully detected and prevented a critical vulnerability in SQLite (CVE-2025-6965) before hackers managed to exploit it, the first time an AI system has proactively thwarted a real cyberattack. Developed by Google DeepMind and Project Zero,

    @KamiruShigatsu

    16 Jul 2025

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. 🤯 Google’s Big Sleep AI agent successfully detected and prevented a critical vulnerability in SQLite (CVE-2025-6965) before hackers managed to exploit it, the first time an AI system has proactively thwarted a real cyberattack. Developed by Google DeepMind and Project Zero,

    @KamiruShigatsu

    16 Jul 2025

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. Google’s AI agent Big Sleep just stopped a zero-day (CVE-2025-6965) before hackers could strike the first known AI to foil an active exploit. #Google #BigSleep #CyberSecurity #ZeroDay #AIvsHackers #TechNews #DeepMind #SQLite #Infosec #ThreatDetection #AI #TechNews #BugHunting h

    @Homeforhackers

    16 Jul 2025

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. 🚨Google's AI agent Big Sleep has achieved a cybersecurity milestone by detecting and blocking a critical SQLite vulnerability (CVE-2025-6965) before hackers could exploit it, marking what the company claims is the first instance of an AI system proactively preventing a https:/

    @bits_IQ

    16 Jul 2025

    22 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. Google’s AI agent Big Sleep just made cybersecurity history 🧠🛡️ It stopped a zero-day attack (CVE-2025-6965) before hackers could act — the first real-world cyberattack blocked by AI in advance. The future of defense is here. #AI #CyberSecurity #GoogleAI #ZeroDay #SQL

    @AskAlphabetical

    16 Jul 2025

    79 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  10. GoogleのAIエージェント「Big Sleep」が、SQLiteの重大なゼロデイ脆弱性(CVE-2025-6965)の悪用を阻止し、サイバーセキュリティ史に新たな一歩を刻んだ。 Big Sleepは脅威インテリジェンスと高度なコード解析を組み合

    @yousukezan

    16 Jul 2025

    4858 Impressions

    14 Retweets

    70 Likes

    38 Bookmarks

    0 Replies

    1 Quote

  11. ИИ-агент Google Big Sleep достиг важного рубежа в области кибербезопасности, обнаружив и заблокировав критическую уязвимость SQLite (CVE-2025-6965),

    @DCNChannel

    16 Jul 2025

    27 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  12. 📌 أعلنت جوجل أن نموذجها الذكي "Big Sleep" اكتشف ثغرة أمنية في محرك قاعدة بيانات SQLite قبل أن يستغلها القراصنة. الثغرة، المسجلة تحت اسم CVE-2025-6965، تؤثر على جميع الإ

    @Cybercachear

    16 Jul 2025

    51 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  13. 🛑 Google’s AI just stopped a cyberattack before it even began. An LLM agent named Big Sleep discovered a critical SQLite flaw (CVE-2025-6965) that threat actors were likely about to exploit—making it the first known case of an AI foiling a live exploit attempt. Details o

    @TheHackersNews

    16 Jul 2025

    15026 Impressions

    52 Retweets

    139 Likes

    45 Bookmarks

    6 Replies

    4 Quotes

  14. Google’s Big Sleep AI identified a critical SQLite vulnerability (CVE-2025-6965) before exploitation, marking the first time AI has preemptively thwarted in-the-wild cyber attacks. This showcases AI’s growing role in defense. #AI #CyberDefense https://t.co/VEf0xOMMnX

    @TweetThreatNews

    15 Jul 2025

    101 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  15. Google’s AI agent “Big Sleep” proactively identifies critical software vulnerabilities. It recently uncovered a major SQLite flaw (CVE-2025-6965) before threat actors could exploit it, securing open-source ecosystems! #AI #Cybersecurity #BigSleep https://t.co/uv2EiEydal

    @rajuborda

    15 Jul 2025

    44 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  16. CVE-2025-6965 There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a mem… https://t.co/gWQCLk5CxD

    @CVEnew

    15 Jul 2025

    340 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  17. 🤖 【A summer of security: empowering cyber defenders with AI】 Googleが開発したAIエージェント「Big Sleep」が、脅威アクターのみが知っていたSQLiteの脆弱性(CVE-2025-6965)を、攻撃される前に発見し遮断したことは、サイバーセ

    @AINews1464255

    15 Jul 2025

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.