CVE-2014-2668

Currently unrated

Key Information:

Vendor: Apache
Status: Couchdb
Vendor: CVE Published:; 28 March 2014

Summary

Apache CouchDB 1.5.0 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via the count parameter to /_uuids.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/92161

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/66474

vdb-entryx_refsource_BID

http://secunia.com/advisories/57572

third-party-advisoryx_refsource_SECUNIA

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 28, 2014
Vulnerability Reserved
Mar 28, 2014