{"cve":{"cve_id":"CVE-2022-24706","is_kev":true,"kev_date_added":"2022-08-25","kev_vendor_project":"Apache","kev_product":"CouchDB","kev_vulnerability_name":"Apache CouchDB Insecure Default Initialization of Resource Vulnerability","kev_short_description":"Apache CouchDB contains an insecure default initialization of resource vulnerability which can allow an attacker to escalate to administrative privileges.","kev_required_action":"Apply updates per vendor instructions.","kev_due_date":"2022-09-15","kev_known_ransomware":false,"kev_notes":"https://lists.apache.org/thread/w24wo0h8nlctfps65txvk0oc5hdcnv00;  https://nvd.nist.gov/vuln/detail/CVE-2022-24706","kev_cwes":["CWE-1188"],"epss_score":0.92335,"epss_percentile":0.9981,"epss_as_of":"2026-06-23","description":"In Apache CouchDB prior to 3.2.2, an attacker can access an improperly secured default installation without authenticating and gain admin privileges. The CouchDB documentation has always made recommendations for properly securing an installation, including recommending using a firewall in front of all CouchDB installations.","published_at":"2022-04-26T00:00:00Z","last_modified_at":null,"cvss_v3_score":9.8,"cvss_v3_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss_v3_severity":"CRITICAL","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":"active","ssvc_automatable":true,"ssvc_technical_impact":"total","cwes":["CWE-1188"],"nvd_references":["https://lists.apache.org/thread/w24wo0h8nlctfps65txvk0oc5hdcnv00","https://docs.couchdb.org/en/3.2.2/setup/cluster.html","http://www.openwall.com/lists/oss-security/2022/04/26/1","http://www.openwall.com/lists/oss-security/2022/05/09/1","http://www.openwall.com/lists/oss-security/2022/05/09/3","http://www.openwall.com/lists/oss-security/2022/05/09/4","http://www.openwall.com/lists/oss-security/2022/05/09/2","http://packetstormsecurity.com/files/167032/Apache-CouchDB-3.2.1-Remote-Code-Execution.html","https://medium.com/%40_sadshade/couchdb-erlang-and-cookies-rce-on-default-settings-b1e9173a4bcd","http://packetstormsecurity.com/files/169702/Apache-CouchDB-Erlang-Remote-Code-Execution.html"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:31.350578Z","updated_at":"2026-06-29T00:58:50.406025Z"},"effective_severity":"CRITICAL","badges":["kev","poc","epss"],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"apache-software-foundation","vendor_name":"Apache Software Foundation","product_slug":"apache-couchdb","product_name":"Apache CouchDB","version_start":"Apache CouchDB","version_start_inclusive":true,"version_end":"3.2.1","version_end_inclusive":true,"cpe23_uri":"cve5:apache-software-foundation:apache-couchdb:Apache CouchDB:3.2.1"}],"exploit_refs":[{"source":"nuclei","kind":"nuclei","url":"https://github.com/projectdiscovery/nuclei-templates/blob/main/network/cves/2022/CVE-2022-24706.yaml","title":"CouchDB Erlang Distribution - Remote Command Execution","author":"Mzack9999,pussycat0x","disclosed_at":null}],"news":[],"references":[{"url":"https://lists.apache.org/thread/w24wo0h8nlctfps65txvk0oc5hdcnv00","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"https://docs.couchdb.org/en/3.2.2/setup/cluster.html","source_type":"MISC","tags":[]},{"url":"http://www.openwall.com/lists/oss-security/2022/04/26/1","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.openwall.com/lists/oss-security/2022/05/09/1","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.openwall.com/lists/oss-security/2022/05/09/3","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.openwall.com/lists/oss-security/2022/05/09/4","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.openwall.com/lists/oss-security/2022/05/09/2","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://packetstormsecurity.com/files/167032/Apache-CouchDB-3.2.1-Remote-Code-Execution.html","source_type":"EXPLOIT","tags":["exploit"]},{"url":"https://medium.com/%40_sadshade/couchdb-erlang-and-cookies-rce-on-default-settings-b1e9173a4bcd","source_type":"MISC","tags":[]},{"url":"http://packetstormsecurity.com/files/169702/Apache-CouchDB-Erlang-Remote-Code-Execution.html","source_type":"EXPLOIT","tags":["exploit"]}],"timeline":[{"type":"published","at":"2022-04-26T00:00:00Z","label":"CVE published","source":null},{"type":"cisa_reported","at":"2022-08-25T00:00:00Z","label":"Added to CISA KEV catalog","source":"kev"},{"type":"poc_available","at":"2026-06-24T00:29:48.638073Z","label":"Public PoC available","source":"nuclei"},{"type":"cvss_changed","at":"2026-06-28T17:21:31.961730Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:21:31.961730Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:21:31.961730Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"ssvc_changed","at":"2026-06-29T00:58:50.406025Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T00:58:50.406025Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T00:58:50.406025Z","label":"SSVC decision revised","source":"vulnrichment"}]}