CVE-2023-45725
CVSS V2 None
CVSS V3 None
Description
Design document functions which receive a user http request object may expose authorization or session cookie headers of the user who accesses the document.
These design document functions are:
* list
* show
* rewrite
* update
An attacker can leak the session component using an HTML-like output, insert the session as an external resource (such as an image), or store the credential in a _local document with an "update" function.
For the attack to succeed the attacker has to be able to insert the design documents into the database, then manipulate a user to access a function from that design document.
Workaround: Avoid using design documents from untrusted sources which may attempt to access or manipulate request object's headers
Overview
- CVE ID
- CVE-2023-45725
- Assigner
- apache
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-12-13T08:02:17.326Z
- Last Modified Date
- 2023-12-13T08:02:17.326Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://lists.apache.org/thread/pqjq9zt8vq9rsobkc1cow9sqm9vozlrg | vendor-advisory |
| https://docs.couchdb.org/en/stable/cve/2023-45725.html | release-notes |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-45725 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45725 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 10:18:25 | Added to TrackCVE |