ArangoDB is a native multi-model database with both key/value key/value pairs, graph and document data models, providing a unified database query language covering all three data models and allowing a mix of all three models in a single query. vulnerability that is susceptible to Insufficient Session Expiration, where a session does not expire when an administrator changes a user’s password, allowing a malicious user to still log in and perform arbitrary actions within the system. An attacker can successfully exploit this vulnerability to execute arbitrary commands.
CPE | Name | Operator | Version |
---|---|---|---|
ArangoDB ArangoDB >=3.7.6, | le | 3.8.3 |