rpm package
suse/couchdb&distro=SUSE OpenStack Cloud Crowbar 8
pkg:rpm/suse/couchdb&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-11769 | Hig | 7.2 | < 1.7.2-3.6.1 | 1.7.2-3.6.1 | Aug 8, 2018 | CouchDB administrative users before 2.2.0 can configure the database server via HTTP(S). Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate their privileges to that of the o | |
| CVE-2018-8007 | Hig | 7.2 | < 1.7.2-3.3.1 | 1.7.2-3.3.1 | Jul 11, 2018 | Apache CouchDB administrative users can configure the database server via HTTP(S). Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate their privileges to that of the operati |
- affected < 1.7.2-3.6.1fixed 1.7.2-3.6.1
CouchDB administrative users before 2.2.0 can configure the database server via HTTP(S). Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate their privileges to that of the o
- affected < 1.7.2-3.3.1fixed 1.7.2-3.3.1
Apache CouchDB administrative users can configure the database server via HTTP(S). Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate their privileges to that of the operati