logo

CVE-2022-24706 - Apache CouchDB Insecure Default Initialization of Resource Vulnerability

CVE-2022-24706

Apache | CouchDB

  • Date Added:
  • 2022-08-25
  • Due Date:
  • 2022-09-15
Vulnerability Name

Apache CouchDB Insecure Default Initialization of Resource Vulnerability

Description

Apache CouchDB contains an insecure default initialization of resource vulnerability which can allow an attacker to escalate to administrative privileges.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes
https://lists.apache.org/thread/w24wo0h8nlctfps65txvk0oc5hdcnv00; https://nvd.nist.gov/vuln/detail/CVE-2022-24706

Free online web security scanner