This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:apache:couchdb:0.8.0
Detail
VendorApacheFirst view 2010-04-05
ProductCouchdbLast view2019-01-02
Version0.8.0TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:apache:couchdb

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
6.52019-01-02CVE-2018-17188NetworkLowRequires ...
92018-08-08CVE-2018-11769NetworkLowRequires ...
92018-07-11CVE-2018-8007NetworkLowRequires ...
92017-11-14CVE-2017-12636NetworkLowRequires ...
102017-11-14CVE-2017-12635NetworkLowNone Requ...
Hide | Show 8 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
6.82014-05-23CVE-2012-5649NetworkMediumNone Requ...
52014-03-28CVE-2014-2668NetworkLowNone Requ...
4.32014-03-18CVE-2012-5650NetworkMediumNone Requ...
52014-03-18CVE-2012-5641NetworkLowNone Requ...
4.32011-02-01CVE-2010-3854NetworkMediumNone Requ...
6.92010-09-14CVE-2010-2953LocalMediumNone Requ...
6.82010-08-19CVE-2010-2234NetworkMediumNone Requ...
4.32010-04-05CVE-2010-0009NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
25% (3)CWE-264Permissions, Privileges, and Access Controls
16% (2)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
16% (2)CWE-20Improper Input Validation
8% (1)CWE-352Cross-Site Request Forgery (CSRF)
8% (1)CWE-200Information Exposure
Hide | Show 3 More...
%idName
8% (1)CWE-94Failure to Control Generation of Code ('Code Injection')
8% (1)CWE-78Improper Sanitization of Special Elements used in an OS Command ('O...
8% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:12182DSA-2107-1 couchdb -- untrusted search path

Open Source Vulnerability Database (OSVDB)

idDescription
70734Apache CouchDB Request / Cookie Handling Unspecified XSS
67976CouchDB on Debian GNU / Linux couchdb Patch Search Path Subversion Crafted Sh...
67240Apache CouchDB Installation Page Direct Request Arbitrary JavaScript Code Exe...
63350Apache CouchDB Hash Verification Algorithm Predictable Execution Time Weakness

OpenVAS Exploits

idDescription
2011-06-10Name : Fedora Update for couchdb FEDORA-2011-7232
File : nvt/gb_fedora_2011_7232_couchdb_fc14.nasl
2011-02-02Name : Apache CouchDB Web Administration Interface Cross Site Scripting Vulnerability
File : nvt/gb_couchdb_46066.nasl
2010-10-10Name : Debian Security Advisory DSA 2107-1 (couchdb)
File : nvt/deb_2107_1.nasl
2010-09-22Name : Fedora Update for couchdb FEDORA-2010-13640
File : nvt/gb_fedora_2010_13640_couchdb_fc13.nasl
2010-09-22Name : Fedora Update for couchdb FEDORA-2010-13665
File : nvt/gb_fedora_2010_13665_couchdb_fc12.nasl
Hide | Show 4 More...
idDescription
2010-08-30Name : Apache CouchDB Cross Site Request Forgery Vulnerability
File : nvt/gb_couchdb_42501.nasl
2010-05-17Name : Fedora Update for couchdb FEDORA-2010-8275
File : nvt/gb_fedora_2010_8275_couchdb_fc11.nasl
2010-05-17Name : Fedora Update for couchdb FEDORA-2010-8298
File : nvt/gb_fedora_2010_8298_couchdb_fc12.nasl
2010-04-12Name : CouchDB Message Digest Verification Security Bypass Vulnerability
File : nvt/gb_couchdb_39116.nasl

Snort® IPS/IDS

DateDescription
2018-05-29Apache CouchDB remote code execution attempt
RuleID : 46440 - Type : SERVER-OTHER - Revision : 1
2018-02-03Apache CouchDB remote code execution attempt
RuleID : 45269 - Type : SERVER-OTHER - Revision : 3
2017-12-19Apache CouchDB remote privilege escalation attempt
RuleID : 44890 - Type : SERVER-OTHER - Revision : 3

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2018-12-21Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_1999a215fc6b11e88a95ac1f6b67e138.nasl - Type : ACT_GATHER_INFO
2018-12-17Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201812-06.nasl - Type : ACT_GATHER_INFO
2018-08-22Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_9b19b6dfa4be11e893660028f8d09152.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote database server is potentially affected by a privilege escalation ...
File : couchdb_2_2_0.nasl - Type : ACT_GATHER_INFO
2018-07-12Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_1e54d140849311e8a7950028f8d09152.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-01-22Name : The remote Debian host is missing a security update.
File : debian_DLA-1252.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing one or more security updates.
File : fedora_2017-a20d92573b.nasl - Type : ACT_GATHER_INFO
2017-11-20Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201711-16.nasl - Type : ACT_GATHER_INFO
2014-12-15Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201412-16.nasl - Type : ACT_GATHER_INFO
2014-07-22Name : The remote Fedora host is missing one or more security updates.
File : fedora_2014-7645.nasl - Type : ACT_GATHER_INFO
2014-07-22Name : The remote Fedora host is missing one or more security updates.
File : fedora_2014-7657.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2014-299.nasl - Type : ACT_GATHER_INFO
2014-05-19Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2014-093.nasl - Type : ACT_GATHER_INFO
2013-05-28Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_4fb45a1cc5d011e28400001b216147b0.nasl - Type : ACT_GATHER_INFO
2013-04-20Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2013-067.nasl - Type : ACT_GATHER_INFO
2013-02-04Name : The remote Fedora host is missing a security update.
File : fedora_2013-1375.nasl - Type : ACT_GATHER_INFO
2013-02-04Name : The remote Fedora host is missing a security update.
File : fedora_2013-1387.nasl - Type : ACT_GATHER_INFO
2013-01-22Name : The remote database server is potentially affected by multiple vulnerabilities.
File : couchdb_1_2_1.nasl - Type : ACT_GATHER_INFO
2011-06-07Name : The remote Fedora host is missing a security update.
File : fedora_2011-7232.nasl - Type : ACT_GATHER_INFO
2011-03-03Name : The remote Fedora host is missing a security update.
File : fedora_2011-1513.nasl - Type : ACT_GATHER_INFO
2011-02-09Name : The remote database server is affected by a cross-site scripting vulnerability.
File : couchdb_1_0_2.nasl - Type : ACT_GATHER_INFO
2010-09-21Name : The remote Fedora host is missing a security update.
File : fedora_2010-13640.nasl - Type : ACT_GATHER_INFO
2010-09-21Name : The remote Fedora host is missing a security update.
File : fedora_2010-13665.nasl - Type : ACT_GATHER_INFO
2010-09-12Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2107.nasl - Type : ACT_GATHER_INFO
2010-08-20Name : The remote database server is affected by a cross-site request forgery vulner...
File : couchdb_0_11_2.nasl - Type : ACT_GATHER_INFO