Improper Authorization
CVE-2018-14670
Summary
Incorrect configuration in deb package in ClickHouse before 1.1.54131 could lead to unauthorized use of the database.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- NONE
- NONE
- HIGH
- HIGH
CWE-285 - Improper Authorization
The software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.
References
Advisory Timeline
- Published
