CVE-2024-23689 - Vulnerability Details - OpenCVE

Exposure of sensitive information in exceptions in ClichHouse's clickhouse-r2dbc, com.clickhouse:clickhouse-jdbc, and com.clickhouse:clickhouse-client versions less than 0.4.6 allows unauthorized users to gain access to client certificate passwords via client exception logs. This occurs when 'sslkey' is specified and an exception, such as a ClickHouseException or SQLException, is thrown during database operations; the certificate password is then included in the logged exception message.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation poc

Automatable no

Technical Impact total

Vendors	Products
Clickhouse	Java Libraries

Configuration 1 [-]

cpe:2.3:a:clickhouse:java_libraries:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/ClickHouse/clickhouse-java/issues/1331
https://github.com/ClickHouse/clickhouse-java/pull/1334
https://github.com/ClickHouse/clickhouse-java/releases/tag/v0.4.6
https://github.com/ClickHouse/clickhouse-java/security/advisories/GHSA-g8ph-74m6-8m7r
https://github.com/advisories/GHSA-g8ph-74m6-8m7r
https://vulncheck.com/advisories/vc-advisory-GHSA-g8ph-74m6-8m7r

History

Fri, 30 May 2025 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published: 2024-01-19T21:02:29.558Z

Updated: 2025-05-30T14:24:57.608Z

Reserved: 2024-01-19T17:35:14.200Z

Link: CVE-2024-23689

Vulnrichment

Updated: 2024-08-01T23:06:25.396Z

NVD

Status : Modified

Published: 2024-01-19T21:15:10.520

Modified: 2025-05-30T15:15:36.853

Link: CVE-2024-23689

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-23689", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2024-01-19T17:35:14.200Z", "datePublished": "2024-01-19T21:02:29.558Z", "dateUpdated": "2025-05-30T14:24:57.608Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://repo.maven.apache.org/maven2", "defaultStatus": "unaffected", "packageName": "com.clickhouse:clickhouse-r2dbc", "versions": [{"lessThan": "0.4.6", "status": "affected", "version": "0", "versionType": "maven"}]}, {"collectionURL": "https://repo.maven.apache.org/maven2", "defaultStatus": "unaffected", "packageName": "com.clickhouse:clickhouse-jdbc", "versions": [{"lessThan": "0.4.6", "status": "affected", "version": "0", "versionType": "maven"}]}, {"collectionURL": "https://repo.maven.apache.org/maven2", "defaultStatus": "unaffected", "packageName": "com.clickhouse:clickhouse-client", "versions": [{"lessThan": "0.4.6", "status": "affected", "version": "0", "versionType": "maven"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>Exposure of sensitive information in exceptions in ClichHouse's clickhouse-r2dbc, com.clickhouse:clickhouse-jdbc, and com.clickhouse:clickhouse-client versions less than 0.4.6 allows unauthorized users to gain access to client certificate passwords via client exception logs. This occurs when 'sslkey' is specified and an exception, such as a ClickHouseException or SQLException, is thrown during database operations; the certificate password is then included in the logged exception message.</p>"}], "value": "Exposure of sensitive information in exceptions in ClichHouse's clickhouse-r2dbc, com.clickhouse:clickhouse-jdbc, and com.clickhouse:clickhouse-client versions less than 0.4.6 allows unauthorized users to gain access to client certificate passwords via client exception logs. This occurs when 'sslkey' is specified and an exception, such as a ClickHouseException or SQLException, is thrown during database operations; the certificate password is then included in the logged exception message.\n\n"}], "problemTypes": [{"descriptions": [{"cweId": "CWE-209", "description": "CWE-209 Generation of Error Message Containing Sensitive Information", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2024-01-19T21:02:29.558Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://github.com/ClickHouse/clickhouse-java/security/advisories/GHSA-g8ph-74m6-8m7r"}, {"tags": ["issue-tracking"], "url": "https://github.com/ClickHouse/clickhouse-java/issues/1331"}, {"tags": ["patch"], "url": "https://github.com/ClickHouse/clickhouse-java/pull/1334"}, {"tags": ["related"], "url": "https://github.com/ClickHouse/clickhouse-java/releases/tag/v0.4.6"}, {"tags": ["third-party-advisory"], "url": "https://github.com/advisories/GHSA-g8ph-74m6-8m7r"}, {"tags": ["third-party-advisory"], "url": "https://vulncheck.com/advisories/vc-advisory-GHSA-g8ph-74m6-8m7r"}], "source": {"discovery": "INTERNAL"}, "title": "ClickHouse Client Certificate Password Exposure"}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T23:06:25.396Z"}, "title": "CVE Program Container", "references": [{"tags": ["vendor-advisory", "x_transferred"], "url": "https://github.com/ClickHouse/clickhouse-java/security/advisories/GHSA-g8ph-74m6-8m7r"}, {"tags": ["issue-tracking", "x_transferred"], "url": "https://github.com/ClickHouse/clickhouse-java/issues/1331"}, {"tags": ["patch", "x_transferred"], "url": "https://github.com/ClickHouse/clickhouse-java/pull/1334"}, {"tags": ["related", "x_transferred"], "url": "https://github.com/ClickHouse/clickhouse-java/releases/tag/v0.4.6"}, {"tags": ["third-party-advisory", "x_transferred"], "url": "https://github.com/advisories/GHSA-g8ph-74m6-8m7r"}, {"tags": ["third-party-advisory", "x_transferred"], "url": "https://vulncheck.com/advisories/vc-advisory-GHSA-g8ph-74m6-8m7r"}]}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-05-09T23:56:00.497117Z", "id": "CVE-2024-23689", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-30T14:24:57.608Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/ClickHouse/clickhouse-java/security/advisories/GHSA-g8ph-74m6-8m7r", "tags": ["vendor-advisory", "x_transferred"]}, {"url": "https://github.com/ClickHouse/clickhouse-java/issues/1331", "tags": ["issue-tracking", "x_transferred"]}, {"url": "https://github.com/ClickHouse/clickhouse-java/pull/1334", "tags": ["patch", "x_transferred"]}, {"url": "https://github.com/ClickHouse/clickhouse-java/releases/tag/v0.4.6", "tags": ["related", "x_transferred"]}, {"url": "https://github.com/advisories/GHSA-g8ph-74m6-8m7r", "tags": ["third-party-advisory", "x_transferred"]}, {"url": "https://vulncheck.com/advisories/vc-advisory-GHSA-g8ph-74m6-8m7r", "tags": ["third-party-advisory", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T23:06:25.396Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2024-23689", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-05-09T23:56:00.497117Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-09T23:56:02.305Z"}}], "cna": {"title": "ClickHouse Client Certificate Password Exposure", "source": {"discovery": "INTERNAL"}, "affected": [{"versions": [{"status": "affected", "version": "0", "lessThan": "0.4.6", "versionType": "maven"}], "packageName": "com.clickhouse:clickhouse-r2dbc", "collectionURL": "https://repo.maven.apache.org/maven2", "defaultStatus": "unaffected"}, {"versions": [{"status": "affected", "version": "0", "lessThan": "0.4.6", "versionType": "maven"}], "packageName": "com.clickhouse:clickhouse-jdbc", "collectionURL": "https://repo.maven.apache.org/maven2", "defaultStatus": "unaffected"}, {"versions": [{"status": "affected", "version": "0", "lessThan": "0.4.6", "versionType": "maven"}], "packageName": "com.clickhouse:clickhouse-client", "collectionURL": "https://repo.maven.apache.org/maven2", "defaultStatus": "unaffected"}], "references": [{"url": "https://github.com/ClickHouse/clickhouse-java/security/advisories/GHSA-g8ph-74m6-8m7r", "tags": ["vendor-advisory"]}, {"url": "https://github.com/ClickHouse/clickhouse-java/issues/1331", "tags": ["issue-tracking"]}, {"url": "https://github.com/ClickHouse/clickhouse-java/pull/1334", "tags": ["patch"]}, {"url": "https://github.com/ClickHouse/clickhouse-java/releases/tag/v0.4.6", "tags": ["related"]}, {"url": "https://github.com/advisories/GHSA-g8ph-74m6-8m7r", "tags": ["third-party-advisory"]}, {"url": "https://vulncheck.com/advisories/vc-advisory-GHSA-g8ph-74m6-8m7r", "tags": ["third-party-advisory"]}], "descriptions": [{"lang": "en", "value": "Exposure of sensitive information in exceptions in ClichHouse's clickhouse-r2dbc, com.clickhouse:clickhouse-jdbc, and com.clickhouse:clickhouse-client versions less than 0.4.6 allows unauthorized users to gain access to client certificate passwords via client exception logs. This occurs when 'sslkey' is specified and an exception, such as a ClickHouseException or SQLException, is thrown during database operations; the certificate password is then included in the logged exception message.\n\n", "supportingMedia": [{"type": "text/html", "value": "<p>Exposure of sensitive information in exceptions in ClichHouse's clickhouse-r2dbc, com.clickhouse:clickhouse-jdbc, and com.clickhouse:clickhouse-client versions less than 0.4.6 allows unauthorized users to gain access to client certificate passwords via client exception logs. This occurs when 'sslkey' is specified and an exception, such as a ClickHouseException or SQLException, is thrown during database operations; the certificate password is then included in the logged exception message.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-209", "description": "CWE-209 Generation of Error Message Containing Sensitive Information"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2024-01-19T21:02:29.558Z"}}}, "cveMetadata": {"cveId": "CVE-2024-23689", "state": "PUBLISHED", "dateUpdated": "2025-05-30T14:24:57.608Z", "dateReserved": "2024-01-19T17:35:14.200Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2024-01-19T21:02:29.558Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:clickhouse:java_libraries:*:*:*:*:*:*:*:*", "matchCriteriaId": "F7EFEC79-6EFB-4FCD-A772-C6A600512D6A", "versionEndExcluding": "0.4.6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Exposure of sensitive information in exceptions in ClichHouse's clickhouse-r2dbc, com.clickhouse:clickhouse-jdbc, and com.clickhouse:clickhouse-client versions less than 0.4.6 allows unauthorized users to gain access to client certificate passwords via client exception logs. This occurs when 'sslkey' is specified and an exception, such as a ClickHouseException or SQLException, is thrown during database operations; the certificate password is then included in the logged exception message.\n\n"}, {"lang": "es", "value": "La exposici\u00f3n de informaci\u00f3n confidencial en excepciones en las versiones clickhouse-r2dbc, com.clickhouse:clickhouse-jdbc y com.clickhouse:clickhouse-client de ClichHouse inferiores a 0.4.6 permite a usuarios no autorizados obtener acceso a las contrase\u00f1as de los certificados del cliente a trav\u00e9s de los registros de excepciones del cliente. Esto ocurre cuando se especifica 'sslkey' y se genera una excepci\u00f3n, como ClickHouseException o SQLException, durante las operaciones de la base de datos; la contrase\u00f1a del certificado se incluye en el mensaje de excepci\u00f3n registrado."}], "id": "CVE-2024-23689", "lastModified": "2025-05-30T15:15:36.853", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-01-19T21:15:10.520", "references": [{"source": "disclosure@vulncheck.com", "tags": ["Exploit", "Issue Tracking"], "url": "https://github.com/ClickHouse/clickhouse-java/issues/1331"}, {"source": "disclosure@vulncheck.com", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/ClickHouse/clickhouse-java/pull/1334"}, {"source": "disclosure@vulncheck.com", "tags": ["Release Notes"], "url": "https://github.com/ClickHouse/clickhouse-java/releases/tag/v0.4.6"}, {"source": "disclosure@vulncheck.com", "tags": ["Vendor Advisory"], "url": "https://github.com/ClickHouse/clickhouse-java/security/advisories/GHSA-g8ph-74m6-8m7r"}, {"source": "disclosure@vulncheck.com", "tags": ["Third Party Advisory"], "url": "https://github.com/advisories/GHSA-g8ph-74m6-8m7r"}, {"source": "disclosure@vulncheck.com", "tags": ["Third Party Advisory"], "url": "https://vulncheck.com/advisories/vc-advisory-GHSA-g8ph-74m6-8m7r"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Issue Tracking"], "url": "https://github.com/ClickHouse/clickhouse-java/issues/1331"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/ClickHouse/clickhouse-java/pull/1334"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://github.com/ClickHouse/clickhouse-java/releases/tag/v0.4.6"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://github.com/ClickHouse/clickhouse-java/security/advisories/GHSA-g8ph-74m6-8m7r"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://github.com/advisories/GHSA-g8ph-74m6-8m7r"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://vulncheck.com/advisories/vc-advisory-GHSA-g8ph-74m6-8m7r"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-209"}], "source": "disclosure@vulncheck.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-209"}], "source": "nvd@nist.gov", "type": "Primary"}]}