CVE-2018-14672
CVE-2018-14672
In ClickHouse before 18.12.13, functions for loading CatBoost models allowed path traversal and reading arbitrary files through error messages.
Affected products
n/a · ClickHouseWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →