CVE-2025-1386

When using the ch-go library, under a specific condition when the query includes a large, uncompressed malicious external data, it is possible for an attacker in control of such data to smuggle another query packet into the connection stream.

CVSS

No CVSS.

References

Link	Resource
https://github.com/ClickHouse/ch-go/security/advisories/GHSA-m454-3xv7-qj85

Configurations

No configuration.

History

11 Apr 2025, 16:15

Type	Values Removed	Values Added
CWE		CWE-444

11 Apr 2025, 15:39

Type	Values Removed	Values Added
Summary		(es) Al utilizar la librería ch-go, bajo una condición específica cuando la consulta incluye datos externos maliciosos de gran tamaño y sin comprimir, es posible que un atacante que controle dichos datos introduzca de contrabando otro paquete de consulta en el flujo de conexión.

11 Apr 2025, 05:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-04-11 05:15

Updated : 2025-04-11 16:15

NVD link : CVE-2025-1386

Mitre link : CVE-2025-1386

CVE.ORG link : CVE-2025-1386

JSON object : View

Products Affected

No product.

CWE

CWE-444

Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

{"id": "CVE-2025-1386", "cveTags": [], "metrics": {"cvssMetricV40": [{"type": "Secondary", "source": "cb7ba516-3b07-4c98-b0c2-715220f1a8f6", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 5.9, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "HIGH", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2025-04-11T05:15:29.583", "references": [{"url": "https://github.com/ClickHouse/ch-go/security/advisories/GHSA-m454-3xv7-qj85", "source": "cb7ba516-3b07-4c98-b0c2-715220f1a8f6"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-444"}]}], "descriptions": [{"lang": "en", "value": "When using the ch-go library, under a specific condition when the query includes a large, uncompressed malicious external data, it is possible for an attacker in control of such data to smuggle another query packet into the connection stream."}, {"lang": "es", "value": " Al utilizar la librer\u00eda ch-go, bajo una condici\u00f3n espec\u00edfica cuando la consulta incluye datos externos maliciosos de gran tama\u00f1o y sin comprimir, es posible que un atacante que controle dichos datos introduzca de contrabando otro paquete de consulta en el flujo de conexi\u00f3n."}], "lastModified": "2025-04-11T16:15:19.490", "sourceIdentifier": "cb7ba516-3b07-4c98-b0c2-715220f1a8f6"}