Lucene search
PRIOn knowledge basePRION:CVE-2022-44010HistoryNov 23, 2023 - 4:15 p.m.
Heap overflow
2023-11-2316:15:00
PRIOn knowledge base
www.prio-n.com
3
clickhouse
http endpoint
buffer overflow
authentication
fixed version
An issue was discovered in ClickHouse before 22.9.1.2603. An attacker could send a crafted HTTP request to the HTTP Endpoint (usually listening on port 8123 by default), causing a heap-based buffer overflow that crashes the process. This does not require authentication. The fixed versions are 22.9.1.2603, 22.8.2.11, 22.7.4.16, 22.6.6.16, and 22.3.12.19.
| CPE | Name | Operator | Version |
|---|---|---|---|
| clickhouse | ge | 22.9 | |
| clickhouse | lt | 22.9.1.2603 | |
| clickhouse | ge | 22.8 | |
| clickhouse | lt | 22.8.2.11 | |
| clickhouse | ge | 22.7 | |
| clickhouse | lt | 22.7.4.16 | |
| clickhouse | ge | 22.6 | |
| clickhouse | lt | 22.6.6.16 | |
| clickhouse | lt | 22.3.12.19 |
Related
cvelist
cvelist
CVE-2022-44010
2023-11-23 00:00:00
debiancve
debiancve
CVE-2022-44010
2023-11-23 16:15:07
cve
cve
CVE-2022-44010
2023-11-23 16:15:07
nvd
nvd
CVE-2022-44010
2023-11-23 16:15:07
ubuntucve
ubuntucve
CVE-2022-44010
2023-11-23 00:00:00