Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
912
VMScore

CVE-2017-12636

Published: 14/11/2017 Updated: 07/11/2023
CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8
CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2
VMScore: 912
Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Subscribe to Couchdb

Vulnerability Summary

CouchDB administrative users can configure the database server via HTTP(S). Some of the configuration options include paths for operating system-level binaries that are subsequently launched by CouchDB. This allows an admin user in Apache CouchDB prior to 1.7.0 and 2.x prior to 2.1.1 to execute arbitrary shell commands as the CouchDB user, including downloading and executing scripts from the public internet.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache couchdb

apache couchdb 2.0.0

Vendor Advisories

Arch Linux Issues:
CouchDB administrative users can configure the database server via HTTP(S) Some of the configuration options include paths for operating system-level binaries that are subsequently launched by CouchDB This allows an admin user in Apache CouchDB before 170 and 2x before 211 to execute arbitrary shell commands as the CouchDB user, including do ...

Exploits

Exploit DB: Apache CouchDB < 2.1.0 - Remote Code Execution
# Title: Apache CouchDB &lt; 210 - Remote Code Execution # Author: Cody Zacharias # Shodan Dork: port:5984 # Vendor Homepage: couchdbapacheorg/ # Software Link: archiveapacheorg/dist/couchdb/source/160/ # Version: &lt;= 170 and 2x - 210 # Tested on: Debian # CVE : CVE-2017-12636 # References: # justicz/security/ ...
Exploit DB: Apache CouchDB - Arbitrary Command Execution (Metasploit)
## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## class MetasploitModule &lt; Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient include Msf::Exploit::CmdStager include Msf::Exploit::FileDropper def initialize(inf ...
Exploit DB: Apache CouchDB Arbitrary Command Execution
CouchDB administrative users can configure the database server via HTTP(S) Some of the configuration options include paths for operating system-level binaries that are subsequently launched by CouchDB This allows an admin user in Apache CouchDB before 170 and 2x before 211 to execute arbitrary shell commands as the CouchDB user, including do ...
Exploit DB: Apache CouchDB Remote Code Execution
Apache CouchDB versions prior to 210 remote code execution proof of concept exploit ...

Github Repositories

https://github.com/RedTeamWing/CVE-2017-12636

CVE-2017-12636|exploit Couchdb

CVE-2017-12636 Usage: python3 exppy target version(16|21) reverseip reverseport _____ _ _ _____ _____ _____ __ ______ __ _____ ____ _____ ____ / __ \ | | | ___| / __ \| _ |/ | |___ / / | / __ \ / ___||____ |/ ___| | / \/ | | | |__ ______`' / /'| |/' |`| | / /_____`| | `' / /'/ /___ / / /___ | | | | | |

https://github.com/moayadalmalat/CVE-2017-12636

Couchdb Arbitrary Command Execution Vulnerability (CVE-2017-12636)

https://github.com/kika/couchdb17-centos7

CouchDB 1.7.1 for Centos7 RPMs

couchdb17-centos7 You absolutely need to install these ASAP if you are still running 16x It has 2 CVEs listed with remote code execution wwwcvedetailscom/cve/CVE-2017-12636/ wwwcvedetailscom/cve/CVE-2017-12635/ Add erlang-solutionsrepo to /etc/yumreposd Install Erlang 202 to check that the repo works: yum install -y erlang-erts Install files in

https://github.com/Guillaumeclavel/Etude_Faille_CVE_12636

Etude_Faille_CVE_12635 &amp; 12636 Travail réalisé dans le cadre de la certification SEOC 2020/2021 Wiki disponible ici pour plus d'explication sur la faille de sécurité étudiée Disponible sur ce dépot Fichier Docker-compose pour isoler le service CouchDB à l'étude dans un container port : 5984 Script

https://github.com/cyberharsh/Apache-couchdb-CVE-2017-12635

Couchdb 垂直权限绕过漏洞(CVE-2017-12635) Apache CouchDB是一个开源数据库,专注于易用性和成为"完全拥抱web的数据库"。它是一个使用JSON作为存储格式,JavaScript作为查询语言,MapReduce和HTTP作为API的NoSQL数据库。应用广泛,如BBC用在其动态内容展示平台,Credit Suisse用在其内部的商品部

References

CWE-78https://security.gentoo.org/glsa/201711-16https://lists.debian.org/debian-lts-announce/2018/01/msg00026.htmlhttps://www.exploit-db.com/exploits/44913/https://www.exploit-db.com/exploits/45019/https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbmu03935en_ushttps://lists.apache.org/thread.html/6c405bf3f8358e6314076be9f48c89a2e0ddf00539906291ebdf0c67%40%3Cdev.couchdb.apache.org%3Ehttps://nvd.nist.govhttps://github.com/RedTeamWing/CVE-2017-12636https://www.exploit-db.com/exploits/44913/https://security.archlinux.org/CVE-2017-12636
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook