CVE-2024-41436 | ClickHouse 24.3.3.102 evaluateConstantExpressionImpl buffer overflow (Issue 65520)

Posted by Angelo Barbosa | Sep 3, 2024 | CVE

A vulnerability was found in ClickHouse 24.3.3.102. It has been classified as critical. Affected is the function DB::evaluateConstantExpressionImpl. The manipulation leads to buffer overflow.

This vulnerability is traded as CVE-2024-41436. Access to the local network is required for this attack. There is no exploit available.

CVE-2024-41436 | ClickHouse 24.3.3.102 evaluateConstantExpressionImpl buffer overflow (Issue 65520)

Related Posts

CVE-2024-46886 | Siemens SIMATIC Drive Controller CPU 1504D TF Link redirect (ssa-876787)

CVE-2024-37288 | Elastic Kibana 8.15.0 YAML Parser deserialization

CVE-2020-26305 | talyssonoc CommonRegexJS redos (GHSL-2020-291)

CVE-2024-1407 | Paid Memberships Pro Plugin up to 2.12.10 on WordPress Membership cross-site request forgery