This page lists publicly disclosed CVE vulnerabilities affecting clickhouse ch (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-1386 | When using the ch-go library, under a specific condition when the query includes a large, uncompressed malicious external data, it is possible for an attacker in control of such data to smuggle another query packet into the connection stream. | cb7ba516-3b07-4c98-b0c2-715220f1a8f6 | 5.9 | 0.05% | 2025-04-11 | 2025-12-19 |