AVG-753 log
| Package | couchdb |
| Status | Fixed |
| Severity | High |
| Type | arbitrary code execution |
| Affected | 2.1.2-1 |
| Fixed | 2.2.0-1 |
| Current | 3.5.0-2 [extra] |
| Ticket | None |
| Created | Sat Aug 11 22:26:47 2018 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2018-11769 | High | Yes | Arbitrary code execution | CouchDB administrative users before 2.2.0 can configure the database server via HTTP(S). Due to insufficient validation of administrator- supplied... |