CVE-2018-14668
N/A
N/A
Summary
In ClickHouse before 1.1.54388, "remote" table function allowed arbitrary symbols in "user", "password" and "default_database" fields which led to Cross Protocol Request Forgery Attacks.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | ClickHouse | All versions prior to version 1.1.54388. | affected |
Weaknesses
- Cross Protocol Request Forgery
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.