VDB
CVE-2022-24706
CVE-2022-24706
PUBLISHED
KEV
Remote Code Execution Vulnerability in Packaging
EPSS 94.38% · 100.0th percentile
Risk Scores
EPSS Score
94.38%
100.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | couchdb | 0 |
| Bitnami | couchdb | 0, 0, 0 |
Timeline
- Jan 20, 1970 VulnCheck XDB Entry
- Jan 20, 1970 VulnCheck XDB Entry
- Jan 20, 1970 VulnCheck XDB Entry
- Jan 21, 1970 VulnCheck XDB Entry
- Mar 6, 2022 VulnCheck KEV Exploitation
- Apr 26, 2022 CVE Published
- Apr 27, 2022 EPSS Score
- May 10, 2022 EPSS Score
- May 12, 2022 PoC Published
- May 20, 2022 EPSS Score
- May 23, 2022 PoC Published
- May 30, 2022 VulnCheck KEV Exploitation
References
- http://packetstormsecurity.com/files/167032/Apache-CouchDB-3.2.1-Remote-Code-Execution.html url
- http://packetstormsecurity.com/files/169702/Apache-CouchDB-Erlang-Remote-Code-Execution.html url
- http://www.openwall.com/lists/oss-security/2022/04/26/1 url
- http://www.openwall.com/lists/oss-security/2022/05/09/1 url
- http://www.openwall.com/lists/oss-security/2022/05/09/2 url
- http://www.openwall.com/lists/oss-security/2022/05/09/3 url
- http://www.openwall.com/lists/oss-security/2022/05/09/4 url
- https://docs.couchdb.org/en/3.2.2/setup/cluster.html url
- https://lists.apache.org/thread/w24wo0h8nlctfps65txvk0oc5hdcnv00 url
- https://medium.com/%40_sadshade/couchdb-erlang-and-cookies-rce-on-default-settings-b1e9173a4bcd url
- https://nvd.nist.gov/vuln/detail/CVE-2022-24706 url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-24706 url