Published: 26/04/2022 Updated: 07/11/2023

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 891

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

In Apache CouchDB before 3.2.2, an attacker can access an improperly secured default installation without authenticating and gain admin privileges. The CouchDB documentation has always made recommendations for properly securing an installation, including recommending using a firewall in front of all CouchDB installations.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apache couchdb

An attacker can access an improperly secured default installation without authenticating and gain admin privileges CouchDB 322 and onwards will refuse to start with the former default Erlang cookie value of 'monster' Installations that upgrade to this versions are forced to choose a different value In addition, all binary packages have been u ...

In Apache CouchDB versions prior to 322, an attacker can access an improperly secured default installation without authenticating and gain admin privileges ...

Apache CouchDB version 321 suffers from a remote code execution vulnerability ...

CVE-2022-24706 POC exploit

CVE-2022-24706 CVE-2022-24706 POC exploit

有关阿帕奇服务的poc验证

Apache_poc 大部分代码经注释，到手即可使用和二次编写请勿用于非法用途，造成一切后果自行承担！！！展示部分代码功能：单个检测，批量检测说明：依赖ysoserial，请将ysoserialjar放到与本脚本同一目录单个检测：python pocpy -u url -d domain 批量检测：python poc

I wrote a blog post about Apache CouchDB CVE-2022-24706 RCE Exploits

Apache-CouchDB-CVE-2022-24706-RCE-Exploits-Blog-post- I wrote a blog post about Apache CouchDB CVE-2022-24706 RCE Exploits

Apache CouchDB 3.2.1 - Remote Code Execution (RCE)

Apache CouchDB 321 - Remote Code Execution (RCE) CVE-2022-24706 Date: 2022-01-21 Exploit Author: Konstantin Burov, @_sadshade Software Link: couchdbapacheorg/ Version: 321 and below Tested on: Kali 20212 Based on 1F98D's Erlang Cookie - Remote Code Execution Shodan: port:4369 "name couchdb at" CVE: CVE-2022-24706 References: habrcom/ru/pos

CWE-1188 https://lists.apache.org/thread/w24wo0h8nlctfps65txvk0oc5hdcnv00 https://docs.couchdb.org/en/3.2.2/setup/cluster.html http://www.openwall.com/lists/oss-security/2022/04/26/1 http://www.openwall.com/lists/oss-security/2022/05/09/4 http://www.openwall.com/lists/oss-security/2022/05/09/1 http://www.openwall.com/lists/oss-security/2022/05/09/2 http://www.openwall.com/lists/oss-security/2022/05/09/3 http://packetstormsecurity.com/files/167032/Apache-CouchDB-3.2.1-Remote-Code-Execution.html http://packetstormsecurity.com/files/169702/Apache-CouchDB-Erlang-Remote-Code-Execution.html https://medium.com/%40_sadshade/couchdb-erlang-and-cookies-rce-on-default-settings-b1e9173a4bcd https://nvd.nist.gov https://github.com/superzerosec/CVE-2022-24706 https://packetstormsecurity.com/files/169702/Apache-CouchDB-Erlang-Remote-Code-Execution.html https://security.archlinux.org/CVE-2022-24706

CVE-2022-24706

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect