Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-1385

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When the library bridge feature is enabled, the clickhouse-library-bridge exposes an HTTP API on localhost. This allows clickhouse-server to dynamically load a...

7.5CVSS6.3AI score0.00425EPSS
Exploits0References2
CVE
CVE
added 2025/03/20 7:13 a.m.1050 views

CVE-2025-1385

The CVE-2025-1385 vulnerability affects ClickHouse when the library_bridge feature is enabled and exposes an HTTP API on localhost (default port 9019). This configuration allows the ClickHouse server to dynamically load a library from a path and execute it in an isolated process, which, combined ...

7.5CVSS7.3AI score0.00425EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/03/20 7:13 a.m.8 views

CVE-2025-1385

When the library bridge feature is enabled, the clickhouse-library-bridge exposes an HTTP API on localhost. This allows clickhouse-server to dynamically load a library from a specified path and execute it in an isolated process. Combined with the ClickHouse table engine functionality that permits...

7.5CVSS6.1AI score0.00425EPSS
Exploits0
Cvelist
Cvelist
added 2025/03/20 7:13 a.m.23 views

CVE-2025-1385 Fail input validation in clickhouse-library-bridge API could lead to RCE under specific configuration

When the library bridge feature is enabled, the clickhouse-library-bridge exposes an HTTP API on localhost. This allows clickhouse-server to dynamically load a library from a specified path and execute it in an isolated process. Combined with the ClickHouse table engine functionality that permits...

7.5CVSS0.00425EPSS
Exploits0References1
Rows per page
Query Builder