Product

CouchDB 1.6.0

1 brief RSS

Apache CouchDB Improper Privilege Management Leads to Remote Code Execution

A public exploit demonstrates improper privilege management in Apache CouchDB (CVE-2017-12635) leading to privilege escalation, which can be combined with CVE-2017-12636 for remote code execution by modifying server configurations via the HTTP API.

CouchDB 1.6.0 privilege-escalation remote-code-execution couchdb CVE-2017-12635 CVE-2017-12636

2r 2t 2c 20h ago