Unrated severityNVD Advisory· Published Aug 15, 2019· Updated Aug 5, 2024
CVE-2018-14669
CVE-2018-14669
Description
ClickHouse MySQL client before versions 1.1.54390 had "LOAD DATA LOCAL INFILE" functionality enabled that allowed a malicious MySQL database read arbitrary files from the connected ClickHouse server.
Affected products
2- ClickHouse/MySQL clientdescription
- Range: <1.1.54390
Patches
Vulnerability mechanics
References
1- clickhouse.yandex/docs/en/security_changelog/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.