This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 17%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Hi Team,
Earlier we got the vulnerability (CVE-2025-6965) regarding the winsqllite3.dll file update. As we have updated the system until the earlier patch released by your side. could you please inform to us how can we mitigate the mentioned vulnerability as file path is part of the OS system directory. Kindly provide the solution for that.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 80%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
Confirming this is still an issue. Our systems are fully patched as of January 2026, yet the winsqlite3.dll file has not been updated to address CVE-2025-6965.
Standard patching is not resolving the vulnerability because the binary version remains unchanged in the system directory. We need clarification on whether a specific out-of-band patch is required or if the fix is still pending in the cumulative update stream.
Hi Team,
Kindly update on this as patching is already completed till the Jan 2026 on system. But still this vulnerability has not been resolved yet.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 85%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAV%3C/text%3E%3C/svg%3E)
The vulnerability is fixed in the following KBs:
For Windows Server 2025 - January 13, 2026—KB5073379
For Windows Server 2022 - January 13, 2026—KB5073457
For Windows Server 2019 - extended support for OS - fix KB - January 13, 2026—KB5073723
Note from KB5073723: You must have installed the August 10, 2021 SSU (KB5005112) before installing this cumulative update.
For Windows Server 2016 - extended support for OS - fix KB - January 13, 2026—KB5073722
Note from KB5073722: Until you install the SSU, this update might not be offered to your device … If you are a Windows Server Update Services (WSUS) administrator, you must approve SSU KB5073447 and this update KB5073722.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 86%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJN%3C/text%3E%3C/svg%3E)
Dear Sachin Pralhadrao Mangate,
The standard and recommended mitigation for a vulnerability in an OS component like this is to apply the official security update. Since you are patched to a previous level, the solution is to install the specific update released for this CVE, which will safely address the binary in-place. Please check the Microsoft Security Update Guide for the June 2025 (or later) cumulative update and deploy it across your environment.
This cumulative update is the safest and most comprehensive path, as it is tested to properly version and replace the protected OS file without causing system instability. Attempting a manual mitigation could lead to version mismatches and system failures.
I recommend deploying this update to a test group first for validation before a broader rollout. This should fully resolve the vulnerability reported.
And if this answer helps resolve your concern, kindly click “Accept Answer” so that others with the same question can benefit too 😊
Thanks, Jason, for your reply. We already have updated the system with recently released (October Month) security & OOB patches by Microsoft. But still the winsqllite3.dll file vulnerability is showing there. Could you please tell which KB patch need to install to mitigate this CVE. It will be very helpful for us.
Thank you.
Hi,
At this moment, Microsoft has not yet published a specific KB update that explicitly calls out this DLL or SQLite version upgrade in our release notes. According to publicly logged information, the remediation for CVE-2025-6965 requires upgrading to SQLite version 3.50.2 or later. However, Microsoft’s catalog of updates does not yet indicate a patch that identifies this version change for the OS-provided winsqlite3.dll. learn.microsoft.com
Here’s what I recommend:
Monitor for the next Windows cumulative update and subscribe to the release notes for any inclusion of winsqlite3.dll or SQLite version changes.
As a workaround, for applications that depend on SQLite directly, bundle your own updated SQLite library (3.50.2 or higher) rather than relying on the system DLL.
Continue to apply all current security updates, and consider scanning your systems for other dependencies that might embed an outdated SQLite version.
If you’d like, I can track the exact KB article once it is released and share it with you as soon as it becomes available.
HI Team,
Can we get any update on this as still SQLite.dll vulnerability is showing open post install the November month security patch installed.
Team, please support on this
HI Jason,
Can we get the update on this. as still the vulnerability (CVE-2025-6965) is showing open there.
Regards,
Sachin Mangate
Hi Sachin,
This vulnerability affects SQLite versions prior to 3.50.2, where aggregate terms could exceed available columns, potentially leading to memory corruption. The recommended mitigation is to upgrade to SQLite version 3.50.2 or later, which addresses the issue. Ensure that all affected systems have applied the latest cumulative updates, as Microsoft has incorporated the patched SQLite library into recent releases. If the vulnerability is still showing as open in your scans, it may be due to cached results or the need to re-run compliance checks after patch installation.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 60%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETR%3C/text%3E%3C/svg%3E)
@Jason Nguyen Tran which latest update does Microsoft address is please? Is it in the latest security KB release?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 37%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
The vulnerability pertaining to SQLite prior to 3.51.2 was not resolved on Windows 2022 Server by applying January 13, 2026—KB5073457 as this thread states. Noted below are the path locations on the Windows 2022 Server I have cited in this post.
Plugin Output:
Path : C:\Windows\SysWOW64\winsqlite3.dll
Installed version : 3.51.1.0
Fixed version : 3.51.2
Path : C:\Windows\System32\winsqlite3.dll
Installed version : 3.51.1.0
Fixed version : 3.51.2