CVE-2021-42389 - CERT CVE

  1. CVE-2021-42389

ID CVE-2021-42389
Sažetak Divide-by-zero in Clickhouse's Delta compression codec when parsing a malicious query. The first byte of the compressed buffer is used in a modulo operation without being checked for 0.
Reference
CVSS
Base: 4.0
Impact: 2.9
Exploitability:8.0
Pristup
VektorSloženostAutentikacija
NETWORK LOW SINGLE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE PARTIAL
CVSS vektor AV:N/AC:L/Au:S/C:N/I:N/A:P
Zadnje važnije ažuriranje 22-03-2022 - 14:58
Objavljeno 14-03-2022 - 23:15