CVE-2019-16535

Summary

In all versions of ClickHouse before 19.14, an OOB read, OOB write and integer underflow in decompression algorithms can be used to achieve RCE or DoS via native protocol.

Affected Software

VendorProductVersion RangeStatus
n/aClickHouseAll versions prior to version 19.14.affected

Weaknesses

  • DOS, RCE

ADP Enrichment

CVE Program Container

Additional References

References