CVE-2018-8007
Apache CouchDB contains a privilege-escalation path where an administrator can modify HTTP-configured settings despite a blacklist, potentially elevating to the OS user that CouchDB runs under and leading to arbitrary remote code execution. The issue stems from insufficient validation of administ...