Teams and Photos updates contain Security Vulnerabilities.

Note, my most recent comment, MS Photos is still vulnerable as well. Both applications need to be updated.

Teddie-D, please follow up. The newest version is still vulnerable to sqlite issues. they need to update to 3.49.1. I have thousands of computers on my enterprise that are affected. This goes for Photos also.

Hi @AJ Edward 

Thank you for your update, and my apologies for the delayed response. 

We sincerely appreciate your ongoing efforts and close attention to this matter. I'm sorry to hear that the latest Teams update still includes the vulnerable sqlite.dll version and does not resolve the concern you've raised. I understand how critical this is, especially given its impact across your enterprise environment. 

As a moderator, my testing environment is limited, and I don't have access to the backend tools needed to validate or deploy fixes. While you may have already submitted feedback through our Feedback Portal, I strongly recommend raising a support request via the Microsoft 365 admin center. Our backend support team has specialized tools and resources to investigate and address such issues more efficiently. 

We truly appreciate your persistence and patience. Your input plays a vital role in helping us improve the security and reliability of our products.

I cannot reach this portal.

Hi @AJ Edward
Since you don’t have the necessary permissions to access the Microsoft 365 admin center, please reach out to your IT team and ask them to submit a support request there.
Thank you for your understanding.

I am that person... I feel like there is not help here.

Hi @AJ Edward
I'm truly sorry for the inconvenience you're experiencing. Unfortunately, at this time, there’s nothing further I can do from my side to assist directly. 
As moderators, we’re unable to suggest specific solutions or workarounds, but please ensure that your IT team, with Global Administrator privileges, is actively collaborating with Microsoft’s backend specialists to identify the most effective resolution. 
We sincerely appreciate your patience and understanding.

Hi @Teddie-D ,

I have the same issue as AJ, and it's effecting our security posture, we have tried upgrading teams to the latest version but still the SQLLITE.DLL which is embedded in teams is still 49.0.0 which is vul.

Even if you manually upgrade the SQLLITE it will reappear as soon as teams received update, this behavior it's the same with the curls.

Please advise.

MICROSOFT. THE ISSUE STILL EXISTS 3 UPDATES LATER!!!!!

Yeah, i know it's frustrating, but i have open up a case with them and they have told me the following: """"The issue will get rolled out by this to Aug-A train. If approved, the fix will reach general ring by the week of Aug 21st. If its not approved, then it will come in Aug-C train which reaches general ring around 1st week of September."""""

Hi @AJ Edward @Juliao, Crishayr
Thank you for your updates.
We understand this issue may affect your workflow and raise concerns about security. Please remain patient and await the upcoming updates.
Your patience and understanding during this time are sincerely appreciated.

Teams has finally fixed the issue, however, BingWeather, Photos and Office Launchpad STILL have an even OLDER version of sqlite (3.46) please tell them to update ALL APPLICATIONS. This is becoming urgent at my federal organization.