Description

Apache CouchDB is open source database software that focuses on ease of use and having a scalable architecture. It has a document-oriented NoSQL database architecture.

By default, the CouchDB REST API allows any request to be made by anyone. This service should not be accessible on a production website without authentication.

Remediation

Disable external access to the CouchDB REST API.

References

Related Vulnerabilities