CVE-2022-24706 - Default configuration

Immediate

Remediate Within 48 Hours

CVE Information|Basic Analysis|Framework Mapping|Web Framework Mapping|Compliance

CVE Information

Original CVE data

Published: April 26, 2022

Updated: November 21, 2022

In Apache CouchDB prior to 3.2.2, an attacker can access an improperly secured default installation without authenticating and gain admin privileges. The CouchDB documentation has always made recommendations for properly securing an installation, including recommending using a firewall in front of all CouchDB installations.

CWE: CWE-1188

CVSS v210

AV:N/AC:L/AU:N/C:C/I:C/A:C

CVSS v39.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

https://lists.apache.org/thread/w24wo0h8nlctfps65txvk0oc5hdcnv00

https://docs.couchdb.org/en/3.2.2/setup/cluster.html

http://www.openwall.com/lists/oss-security/2022/04/26/1

http://www.openwall.com/lists/oss-security/2022/05/09/4

http://www.openwall.com/lists/oss-security/2022/05/09/1

http://www.openwall.com/lists/oss-security/2022/05/09/2

http://www.openwall.com/lists/oss-security/2022/05/09/3

http://packetstormsecurity.com/files/167032/Apache-CouchDB-3.2.1-Remote-Code-Execution.html

https://medium.com/@_sadshade/couchdb-erlang-and-cookies-rce-on-default-settings-b1e9173a4bcd

http://packetstormsecurity.com/files/169702/Apache-CouchDB-Erlang-Remote-Code-Execution.html

Affected Vendors

Apache - (1)

More vulnerabilities from Apache

Basic Analysis

Common vulnerability metrics

Vulnerabilty type as detected by PRIOⁿengine

Default configuration

CVSS Scores as calculated by PRIOⁿengine

CVSS v210

AV:N/AC:L/AU:N/C:C/I:C/A:C

CVSS v39.8

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

MITRE CWE Top 25

Exploits

Exploits are available either through exploit packs, Github repos or the world wide web in general.

Active Exploitation

Vulnerability is referenced under CISA's Known Exploited Vulnerabilities (KEV) catalog. See the KEV Catalog

Social Network Activity

Threat Actor Activity

No sightings of the vulnerability within threat reports.

Cybersecurity Frameworks

How the vulnerability maps against various cybersecurity frameworks

T1133 - External Remote Services

Compliance Impact

How the submited vulnerability affects compliance

Web Application Security Frameworks

Applicable if the issue likely affects a web application