Abraithwaite

**Name of the Vulnerable Software and Affected Versions** ClickHouse versions prior to 24.0.2.54535 ClickHouse version 23.1 **Description** A bug exists in ClickHouse that allows query caching to bypass role-based access controls and policies. This means that attackers with control of a role could guess queries and see data they shouldn't have access to. The query cache only respects separate users, which is not documented and not expected behavior. People relying on ClickHouse roles can have their access control lists bypassed if they are using query caching. There are approximately 53,543 results found in the ZoomEye cyberspace search engine. **Recommendations** For ClickHouse versions prior to 24.0.2.54535, update to version 24.0.2.54535 or later to resolve the issue. For ClickHouse version 23.1, update to version 24.1 or later to resolve the issue. As a temporary workaround, consider disabling the query cache when dynamically switching between various roles to minimize the risk of exploitation.