all InfoSec news
CVE-2023-26268 (cloudant, couchdb)
May 2, 2023, 9:15 p.m. |
National Vulnerability Database web.nvd.nist.gov
* validate_doc_update
* list
* filter
* filter views (using view functions as filters)
* rewrite
* update
This doesn't affect map/reduce or search (Dreyfus) index functions.
Users are recommended to upgrade to a version that is no longer affected by this issue (Apache CouchDB 3.3.2 or 3.2.3).
Workaround: Avoid using design documents from untrusted sources …
cluster cve databases design document documents environment filter functions ids javascript list map may search share update upgrade
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-45955 (lightstrip_firmware)
4 months, 4 weeks ago |
web.nvd.nist.gov
CVE-2023-21380 (android)
4 months, 4 weeks ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
4 months, 4 weeks ago |
web.nvd.nist.gov
CVE-2023-21385 (android)
4 months, 4 weeks ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
Information Technology Specialist II: Network Architect
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
Cybersecurity Skills Challenge -- Sponsored by DoD
@ Correlation One | United States
Security Operations Center (SOC) Analyst
@ GK Cybersecurity Group | Remote
DevSecOps Engineer
@ SIXGEN | Remote
Senior DevSecOps Engineer
@ nou Systems, Inc. | Huntsville AL, Huntsville, AL, US
Security Engineer (f/m/d)
@ Enpal B.V. | Berlin, Germany