CVE-2022-24706 - Apache CouchDB Insecure Default Initialization of Resource Vulnerability
Project:Apache
Product:CouchDB
Date Added:2022-08-25Due Date:2022-09-15
Vulnerability Name
Apache CouchDB Insecure Default Initialization of Resource Vulnerability
Description
Apache CouchDB contains an insecure default initialization of resource vulnerability which can allow an attacker to escalate to administrative privileges.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://lists.apache.org/thread/w24wo0h8nlctfps65txvk0oc5hdcnv00
https://nvd.nist.gov/vuln/detail/CVE-2022-24706