Missing Authentication for Critical Function in CouchDB

#VU62595 Missing Authentication for Critical Function in CouchDB

Published: 2022-05-11 | Updated: 2022-11-17

Vulnerability identifier: #VU62595

Vulnerability risk: High

CVSSv3.1: 8.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:H/RL:O/RC:C]

CVE-ID: CVE-2022-24706

CWE-ID: CWE-306

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
CouchDB
Server applications / Database software

Vendor: Apache Foundation

Description

The vulnerability allows a remote attacker to gain full access to the application.

The vulnerability exists due to application in default configuration exposes a random network port, bound to all available interfaces in anticipation of clustered operation and/or runtime introspection. A remote attacker can connect to the application via the exposed port without authentication and gain admin privileges.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

CouchDB: 0.8.0 - 20110908

External links
http://docs.couchdb.org/en/stable/cve/2022-24706.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM Cloud Pak for Multicloud Management

Missing authentication in Apache CouchDB