Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistApacheCVELIST:CVE-2022-24706
HistoryApr 26, 2022 - 12:00 a.m.

CVE-2022-24706 Remote Code Execution Vulnerability in Packaging

2022-04-2600:00:00
CWE-1188
apache
www.cve.org

9.7 High

AI Score

Confidence

High

0.975 High

EPSS

Percentile

100.0%

JSON

In Apache CouchDB prior to 3.2.2, an attacker can access an improperly secured default installation without authenticating and gain admin privileges. The CouchDB documentation has always made recommendations for properly securing an installation, including recommending using a firewall in front of all CouchDB installations.

CNA Affected

[
  {
    "vendor": "Apache Software Foundation",
    "product": "Apache CouchDB",
    "versions": [
      {
        "version": "Apache CouchDB",
        "status": "affected",
        "lessThanOrEqual": "3.2.1",
        "versionType": "custom"
      }
    ]
  }
]

Related

cve 1
githubexploit 3
zdt 2
mageia 1
openvas 4
nvd 1
osv 2
ubuntucve 1
packetstorm 2
nessus 1
checkpoint_advisories 1
attackerkb 1
metasploit 1
prion 1
cisa_kev 1
cnvd 1
exploitdb 1
rapid7blog 1
thn 1
ibm 2
cve
cve
CVE-2022-24706
2022-04-26 10:15:35
githubexploit
githubexploit
Exploit for Insecure Default Initialization of Resource in Apache Couchdb
2022-09-06 00:17:19
Exploit for Insecure Default Initialization of Resource in Apache Couchdb
2022-05-20 04:28:51
Exploit for Insecure Default Initialization of Resource in Apache Couchdb
2022-05-22 13:37:06
zdt
zdt
Apache CouchDB Erlang Remote Code Execution Exploit
2022-11-02 00:00:00
Apache CouchDB 3.2.1 - Remote Code Execution Exploit
2022-05-12 00:00:00
mageia
mageia
Updated couchdb packages fix security vulnerability
2022-12-17 21:48:08
openvas
openvas
Apache CouchDB < 3.2.2 Privilege Escalation Vulnerability - Active Check
2022-11-08 00:00:00
Mageia: Security Advisory (MGASA-2022-0466)
2022-12-19 00:00:00
Apache CouchDB < 3.2.2 Privilege Escalation Vulnerability - Windows - Version Check
2022-05-03 00:00:00
nvd
nvd
CVE-2022-24706
2022-04-26 10:15:35
osv
osv
CVE-2022-24706
2022-04-26 10:15:35
BIT-couchdb-2022-24706
2024-03-06 10:51:24
ubuntucve
ubuntucve
CVE-2022-24706
2022-04-26 00:00:00
packetstorm
packetstorm
Apache CouchDB 3.2.1 Remote Code Execution
2022-05-11 00:00:00
Apache CouchDB Erlang Remote Code Execution
2022-11-02 00:00:00
nessus
nessus
Apache CouchDB < 3.2.2 Remote Privilege Escalation
2022-05-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache CouchDB Remote Code Execution (CVE-2022-24706)
2022-06-13 00:00:00
attackerkb
attackerkb
CVE-2022-24706
2022-04-26 00:00:00
metasploit
metasploit
Apache Couchdb Erlang RCE
2022-11-01 15:54:12
prion
prion
Default configuration
2022-04-26 10:15:00
cisa_kev
cisa_kev
Apache CouchDB Insecure Default Initialization of Resource Vulnerability
2022-08-25 00:00:00
cnvd
cnvd
Apache CouchDB has command execution vulnerability
2022-08-06 00:00:00
exploitdb
exploitdb
Apache CouchDB 3.2.1 - Remote Code Execution (RCE)
2022-05-11 00:00:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2022-11-04 19:14:17
thn
thn
CISA Adds 10 New Known Actively Exploited Vulnerabilities to its Catalog
2022-08-29 04:23:00
ibm
ibm
Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilities in multiple Open Source Software (OSS) components
2024-05-30 20:42:31
Security Bulletin: Multiple Vulnerabilities in IBM Cloud Pak for Multicloud Management
2024-02-28 21:45:52

9.7 High

AI Score

Confidence

High

0.975 High

EPSS

Percentile

100.0%

JSON
Related for CVELIST:CVE-2022-24706
cve1githubexploit3zdt2mageia1openvas4nvd1osv2ubuntucve1packetstorm2nessus1checkpoint_advisories1attackerkb1metasploit1prion1cisa_kev1cnvd1exploitdb1rapid7blog1thn1ibm2