Max CVSS | 9.0 | Min CVSS | 6.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2018-17188 | 6.5 |
Prior to CouchDB version 2.3.0, CouchDB allowed for runtime-configuration of key components of the database. In some cases, this lead to vulnerabilities where CouchDB admin users could access the underlying operating system as the CouchDB user. Toget
|
03-10-2019 - 00:03 | 02-01-2019 - 14:29 | |
CVE-2018-11769 | 9.0 |
CouchDB administrative users before 2.2.0 can configure the database server via HTTP(S). Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate the
|
03-10-2019 - 00:03 | 08-08-2018 - 15:29 | |
CVE-2018-8007 | 9.0 |
Apache CouchDB administrative users can configure the database server via HTTP(S). Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate their pri
|
13-05-2019 - 19:29 | 11-07-2018 - 13:29 |