9 matches found
CVE-2025-1386
When using the ch-go library, under a specific condition when the query includes a large, uncompressed malicious external data, it is possible for an attacker in control of such data to smuggle another query packet into the connection stream...
CVE-2025-1386 vulnerabilities
Vulnerabilities for packages: telegraf...
CVE-2025-1386 vulnerabilities
Vulnerabilities for packages: telegraf...
CVE-2025-1386- Query smuggling in ch-go library
Impact When using the ch-go library, under a specific condition when the query includes a large, uncompressed malicious external data, it is possible for an attacker in control of such data to smuggle another query packet into the connection stream. Patches If you are using ch-go library, we...
CVE-2025-1386- Query smuggling in ch-go library
When using the ch-go library, under a specific condition when the query includes a large, uncompressed malicious external data, it is possible for an attacker in control of such data to smuggle another query packet into the connection stream...
CVE-2025-1386
When using the ch-go library, under a specific condition when the query includes a large, uncompressed malicious external data, it is possible for an attacker in control of such data to smuggle another query packet into the connection stream...
CVE-2025-1386
creationtimestamp| type| source ---|---|--- 2025-04-11 04:49:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11384 2025-04-11 05:43:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmjcrdawyz2i 2025-04-11 09:45:34+00:00| seen|...
CVE-2025-1386
CVE-2025-1386 concerns the ch-go library from github.com/ClickHouse/ch-go. The issue is a vulnerability in which, under a specific condition where a query includes large, uncompressed external data, an attacker who controls that data can smuggle another query packet into the same connection strea...
CVE-2025-1386 Query smuggling in ch-go library
When using the ch-go library, under a specific condition when the query includes a large, uncompressed malicious external data, it is possible for an attacker in control of such data to smuggle another query packet into the connection stream...