#VU75675 Improper access control in CouchDB - CVE-2023-26268

Cybersecurity Help s.r.o.

Published: 2023-05-02

Vulnerability identifier: #VU75675

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-26268

CWE-ID: CWE-284

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
CouchDB
Server applications / Database software

Vendor: Apache Foundation

Description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions in the couchjs processes. Design documents with matching document IDs, from databases on the same cluster, may share a mutable Javascript environment when using these design document functions:

validate_doc_update
list
filter
filter views (using view functions as filters)
rewrite
update

Mitigation
Install updates from vendor's website.

Vulnerable software versions

CouchDB: 3.0.0 - 3.3.1

External links
https://docs.couchdb.org/en/stable/cve/2023-26268.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM Cloud Pak for Multicloud Management

IBM App Connect Enterprise Certified Container update for Apache CouchDB

Improper access control in IBM Cloud Pak for Integration (CP4I)

Information disclosure in Apache CouchDB