This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:apache:couchdb
Detail
VendorApacheFirst view 2010-04-05
ProductCouchdbLast view2019-01-02
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:apache:couchdb:0.8.013
cpe:/a:apache:couchdb:0.9.012
cpe:/a:apache:couchdb:0.9.112
cpe:/a:apache:couchdb:0.9.212
cpe:/a:apache:couchdb:0.8.112
Hide | Show 45 More...
CPE NameAffected CVE
cpe:/a:apache:couchdb:0.10.012
cpe:/a:apache:couchdb:0.10.112
cpe:/a:apache:couchdb:0.11.011
cpe:/a:apache:couchdb:1.0.010
cpe:/a:apache:couchdb:0.10.210
cpe:/a:apache:couchdb:0.11.110
cpe:/a:apache:couchdb:1.0.110
cpe:/a:apache:couchdb:0.11.210
cpe:/a:apache:couchdb:1.0.39
cpe:/a:apache:couchdb:1.1.09
cpe:/a:apache:couchdb:1.0.29
cpe:/a:apache:couchdb:1.1.19
cpe:/a:apache:couchdb:1.2.09
cpe:/a:apache:couchdb:1.5.06
cpe:/a:apache:couchdb:1.0.46
cpe:/a:apache:couchdb:1.1.26
cpe:/a:apache:couchdb:1.2.16
cpe:/a:apache:couchdb:2.0.06
cpe:/a:apache:couchdb:1.2.26
cpe:/a:apache:couchdb:1.3.06
cpe:/a:apache:couchdb:1.3.16
cpe:/a:apache:couchdb:1.4.06
cpe:/a:apache:couchdb:-6
cpe:/a:apache:couchdb:1.5.15
cpe:/a:apache:couchdb:1.6.05
cpe:/a:apache:couchdb:1.6.15
cpe:/a:apache:couchdb:2.0.0:rc13
cpe:/a:apache:couchdb:2.0.0:rc23
cpe:/a:apache:couchdb:2.0.0:rc33
cpe:/a:apache:couchdb:2.0.0:rc43
cpe:/a:apache:couchdb:1.7.13
cpe:/a:apache:couchdb:2.1.03
cpe:/a:apache:couchdb:2.1.13
cpe:/a:apache:couchdb:1.7.03
cpe:/a:apache:couchdb:1.7.22
cpe:/a:apache:couchdb:2.1.22
cpe:/a:apache:couchdb:2.1.2.2
cpe:/a:apache:couchdb:2.2.01
cpe:/a:apache:couchdb:1.7.0:-1
cpe:/a:apache:couchdb:1.7.0:rc11
cpe:/a:apache:couchdb:1.7.1:-1
cpe:/a:apache:couchdb:1.7.1:rc11
cpe:/a:apache:couchdb:2.0.0:-1
cpe:/a:apache:couchdb:2.1.0:-1
cpe:/a:apache:couchdb:2.1.0:rc11

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
6.52019-01-02CVE-2018-17188NetworkLowRequires ...
4.62018-09-21CVE-2018-14889LocalLowNone Requ...
92018-08-08CVE-2018-11769NetworkLowRequires ...
92018-07-11CVE-2018-8007NetworkLowRequires ...
7.22018-02-12CVE-2016-8742LocalLowNone Requ...
Hide | Show 10 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
92017-11-14CVE-2017-12636NetworkLowRequires ...
102017-11-14CVE-2017-12635NetworkLowNone Requ...
6.82014-05-23CVE-2012-5649NetworkMediumNone Requ...
52014-03-28CVE-2014-2668NetworkLowNone Requ...
4.32014-03-18CVE-2012-5650NetworkMediumNone Requ...
52014-03-18CVE-2012-5641NetworkLowNone Requ...
4.32011-02-01CVE-2010-3854NetworkMediumNone Requ...
6.92010-09-14CVE-2010-2953LocalMediumNone Requ...
6.82010-08-19CVE-2010-2234NetworkMediumNone Requ...
4.32010-04-05CVE-2010-0009NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
28% (4)CWE-264Permissions, Privileges, and Access Controls
21% (3)CWE-20Improper Input Validation
14% (2)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
7% (1)CWE-352Cross-Site Request Forgery (CSRF)
7% (1)CWE-200Information Exposure
Hide | Show 3 More...
%idName
7% (1)CWE-94Failure to Control Generation of Code ('Code Injection')
7% (1)CWE-78Improper Sanitization of Special Elements used in an OS Command ('O...
7% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

Open Source Vulnerability Database (OSVDB)

idDescription
70734Apache CouchDB Request / Cookie Handling Unspecified XSS
67976CouchDB on Debian GNU / Linux couchdb Patch Search Path Subversion Crafted Sh...
67240Apache CouchDB Installation Page Direct Request Arbitrary JavaScript Code Exe...
63350Apache CouchDB Hash Verification Algorithm Predictable Execution Time Weakness

OpenVAS Exploits

idDescription
2011-06-10Name : Fedora Update for couchdb FEDORA-2011-7232
File : nvt/gb_fedora_2011_7232_couchdb_fc14.nasl
2011-02-02Name : Apache CouchDB Web Administration Interface Cross Site Scripting Vulnerability
File : nvt/gb_couchdb_46066.nasl
2010-10-10Name : Debian Security Advisory DSA 2107-1 (couchdb)
File : nvt/deb_2107_1.nasl
2010-09-22Name : Fedora Update for couchdb FEDORA-2010-13640
File : nvt/gb_fedora_2010_13640_couchdb_fc13.nasl
2010-09-22Name : Fedora Update for couchdb FEDORA-2010-13665
File : nvt/gb_fedora_2010_13665_couchdb_fc12.nasl
Hide | Show 4 More...
idDescription
2010-08-30Name : Apache CouchDB Cross Site Request Forgery Vulnerability
File : nvt/gb_couchdb_42501.nasl
2010-05-17Name : Fedora Update for couchdb FEDORA-2010-8275
File : nvt/gb_fedora_2010_8275_couchdb_fc11.nasl
2010-05-17Name : Fedora Update for couchdb FEDORA-2010-8298
File : nvt/gb_fedora_2010_8298_couchdb_fc12.nasl
2010-04-12Name : CouchDB Message Digest Verification Security Bypass Vulnerability
File : nvt/gb_couchdb_39116.nasl

Snort® IPS/IDS

DateDescription
2018-05-29Apache CouchDB remote code execution attempt
RuleID : 46440 - Type : SERVER-OTHER - Revision : 1
2018-02-03Apache CouchDB remote code execution attempt
RuleID : 45269 - Type : SERVER-OTHER - Revision : 3
2017-12-19Apache CouchDB remote privilege escalation attempt
RuleID : 44890 - Type : SERVER-OTHER - Revision : 3

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2018-12-21Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_1999a215fc6b11e88a95ac1f6b67e138.nasl - Type : ACT_GATHER_INFO
2018-12-17Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201812-06.nasl - Type : ACT_GATHER_INFO
2018-08-22Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_9b19b6dfa4be11e893660028f8d09152.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote database server is potentially affected by a privilege escalation ...
File : couchdb_2_2_0.nasl - Type : ACT_GATHER_INFO
2018-07-12Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_1e54d140849311e8a7950028f8d09152.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-01-22Name : The remote Debian host is missing a security update.
File : debian_DLA-1252.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing one or more security updates.
File : fedora_2017-a20d92573b.nasl - Type : ACT_GATHER_INFO
2017-11-20Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201711-16.nasl - Type : ACT_GATHER_INFO
2014-12-15Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201412-16.nasl - Type : ACT_GATHER_INFO
2014-07-22Name : The remote Fedora host is missing one or more security updates.
File : fedora_2014-7645.nasl - Type : ACT_GATHER_INFO
2014-07-22Name : The remote Fedora host is missing one or more security updates.
File : fedora_2014-7657.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2014-299.nasl - Type : ACT_GATHER_INFO
2014-05-19Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2014-093.nasl - Type : ACT_GATHER_INFO
2013-05-28Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_4fb45a1cc5d011e28400001b216147b0.nasl - Type : ACT_GATHER_INFO
2013-04-20Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2013-067.nasl - Type : ACT_GATHER_INFO
2013-02-04Name : The remote Fedora host is missing a security update.
File : fedora_2013-1375.nasl - Type : ACT_GATHER_INFO
2013-02-04Name : The remote Fedora host is missing a security update.
File : fedora_2013-1387.nasl - Type : ACT_GATHER_INFO
2013-01-22Name : The remote database server is potentially affected by multiple vulnerabilities.
File : couchdb_1_2_1.nasl - Type : ACT_GATHER_INFO
2011-06-07Name : The remote Fedora host is missing a security update.
File : fedora_2011-7232.nasl - Type : ACT_GATHER_INFO
2011-03-03Name : The remote Fedora host is missing a security update.
File : fedora_2011-1513.nasl - Type : ACT_GATHER_INFO
2011-02-09Name : The remote database server is affected by a cross-site scripting vulnerability.
File : couchdb_1_0_2.nasl - Type : ACT_GATHER_INFO
2010-09-21Name : The remote Fedora host is missing a security update.
File : fedora_2010-13640.nasl - Type : ACT_GATHER_INFO
2010-09-21Name : The remote Fedora host is missing a security update.
File : fedora_2010-13665.nasl - Type : ACT_GATHER_INFO
2010-09-12Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2107.nasl - Type : ACT_GATHER_INFO
2010-08-20Name : The remote database server is affected by a cross-site request forgery vulner...
File : couchdb_0_11_2.nasl - Type : ACT_GATHER_INFO