Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-29359

Malicious code in bioql PyPI...

8.1CVSS8AI score0.01549EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 6:50 p.m.15 views

CVE-2021-43305

Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There is no verification that the copy operations in the LZ4::decompressImpl loop and especially the arbitrary copy operation wildCopyop, ip, copyend, don’t exceed the destination buffer’s limits. This issu...

8.8CVSS6.9AI score0.01646EPSS
Exploits2
OSV
OSV
added 2022/03/14 11:15 p.m.3 views

DEBIAN-CVE-2021-42388

Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query. As part of the LZ4::decompressImpl loop, a 16-bit unsigned user-supplied value 'offset' is read from the compressed data. The offset is later used in the length of a copy operation, without checking the...

8.1CVSS8AI score0.01549EPSS
Exploits1References1
OSV
OSV
added 2022/03/14 11:15 p.m.3 views

UBUNTU-CVE-2021-42388

Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query. As part of the LZ4::decompressImpl loop, a 16-bit unsigned user-supplied value 'offset' is read from the compressed data. The offset is later used in the length of a copy operation, without checking the...

8.1CVSS5.8AI score0.01549EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2021/10/18 12:0 a.m.5 views

PT-2021-23609 · Unknown +4 · Clickhouse +3

Name of the Vulnerable Software and Affected Versions: ClickHouse affected versions not specified Description: A heap out-of-bounds read issue exists in ClickHouse's LZ4 compression codec when parsing a malicious query. The LZ4::decompressImpl loop reads a 16-bit unsigned user-supplied value offs...

8.8CVSS6.9AI score0.01646EPSS
Exploits7References39
Rows per page
Query Builder