Lucene search
K

6 matches found

The Hacker News
The Hacker News
added 2022/03/16 7:53 a.m.53 views

Multiple Flaws Uncovered in ClickHouse OLAP Database System for Big Data

Researchers have disclosed seven new security vulnerabilities in an open-source database management system solution called ClickHouse that could be weaponized to crash the servers, leak memory contents, and even lead to the execution of arbitrary code. "The vulnerabilities require authentication,...

9.1CVSS1.5AI score0.54889EPSS
Exploits14
NVD
NVD
added 2022/03/14 11:15 p.m.20 views

CVE-2021-42391

Divide-by-zero in Clickhouse's Gorilla compression codec when parsing a malicious query. The first byte of the compressed buffer is used in a modulo operation without being checked for 0...

6.5CVSS0.01352EPSS
Exploits1References1
OSV
OSV
added 2022/03/14 11:15 p.m.21 views

CVE-2021-42391

Divide-by-zero in Clickhouse's Gorilla compression codec when parsing a malicious query. The first byte of the compressed buffer is used in a modulo operation without being checked for 0...

6.5CVSS7.3AI score
Exploits0References1
CVE
CVE
added 2022/03/14 10:20 p.m.105 views

CVE-2021-42391

CVE-2021-42391 affects ClickHouse through a divide-by-zero flaw in the Gorilla compression codec. The vulnerability arises when parsing a malicious query: the first byte of the compressed buffer is used in a modulo operation without validating for zero, potentially causing denial of service. The ...

6.5CVSS6.8AI score0.01352EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2022/03/14 10:20 p.m.62 views

CVE-2021-42391

Divide-by-zero in Clickhouse's Gorilla compression codec when parsing a malicious query. The first byte of the compressed buffer is used in a modulo operation without being checked for 0...

6.5CVSS6.6AI score0.01352EPSS
Exploits1
ClickHouse
ClickHouse
added 2021/10/18 12:0 a.m.13 views

CVE-2021-42391

Divide-by-zero in ClickHouse's Gorilla compression codec when parsing a malicious query. The first byte of the compressed buffer is used in a modulo operation without being checked for 0. JFrog Security Research Team...

6.5CVSS5.5AI score0.01352EPSS
Exploits1
Rows per page
Query Builder