3 matches found
Apache CouchDB 3.0.0 Remote Privilege Escalation Vulnerability - Windows
CouchDB is prone to a remote privilege escalation vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:couchdb";...
Apache CouchDB 3.0.0 Remote Privilege Escalation Vulnerability - Linux
CouchDB is prone to a remote privilege escalation vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
CVE-2020-1955
CVE-2020-1955 affects CouchDB 3.0.0 where the new require_valid_user_except_for_up setting was intended to require credentials for all endpoints except /_up, but a defect caused credentials not to be enforced at any endpoint when enabled. Multiple sources (NVD/NIST entry, OSV, SUSE and Nessus/Ope...