CVE-2023-45725

Published: Dic 13, 2023 Last Modified: Nov 21, 2024
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 5,7
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: low
User Interaction: required
Scope: unchanged
Confidentiality: high
Integrity: none
Availability: none

Description

AI Translation Available

Design document functions which receive a user http request object may expose authorization or session cookie headers of the user who accesses the document.

These design document functions are:
*   list
*   show
*   rewrite
*   update

An attacker can leak the session component using an HTML-like output, insert the session as an external resource (such as an image), or store the credential in a _local document with an 'update' function.

For the attack to succeed the attacker has to be able to insert the design documents into the database, then manipulate a user to access a function from that design document.

Workaround: Avoid using design documents from untrusted sources which may attempt to access or manipulate request object's headers

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0022
Percentile
0,4th
Updated

EPSS Score Trend (Last 90 Days)

200

Exposure of Sensitive Information to an Unauthorized Actor

Draft
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Confidentiality
Potential Impacts:
Read Application Data
Applicable Platforms
Technologies: Mobile, Not Technology-Specific, Web Based
Likelihood of Exploit: High
View CWE Details
Application

Couchdb by Apache

Product Information
Vendor Apache
Product Couchdb
Version Range Affected
To 3.3.2 (inclusive)
cpe:2.3:a:apache:couchdb:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://docs.couchdb.org/en/stable/cve/2023-45725.html
Patch Vendor Advisory
https://docs.couchdb.org/en/stable/cve/2023-45725.html
https://lists.apache.org/thread/pqjq9zt8vq9rsobkc1cow9sqm9v…
Mailing List Vendor Advisory
https://lists.apache.org/thread/pqjq9zt8vq9rsobkc1cow9sqm9vozlrg
https://docs.couchdb.org/en/stable/cve/2023-45725.html
Patch Vendor Advisory
https://docs.couchdb.org/en/stable/cve/2023-45725.html
https://lists.apache.org/thread/pqjq9zt8vq9rsobkc1cow9sqm9v…
Mailing List Vendor Advisory
https://lists.apache.org/thread/pqjq9zt8vq9rsobkc1cow9sqm9vozlrg