VYPR
Unrated severityNVD Advisory· Published Aug 15, 2019· Updated Aug 5, 2024

CVE-2018-14668

CVE-2018-14668

Description

In ClickHouse before 1.1.54388, "remote" table function allowed arbitrary symbols in "user", "password" and "default_database" fields which led to Cross Protocol Request Forgery Attacks.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.