A vulnerability was found in ClickHouse 24.3.3.102. It has been classified as critical. Affected is the function
DB::evaluateConstantExpressionImpl
. The manipulation leads to buffer overflow.
This vulnerability is traded as CVE-2024-41436. Access to the local network is required for this attack. There is no exploit available.