Description

InfluxDB is an open-source time series database

InfluxDB is designed to be accessed inside trusted environments. It's not recommended to have InfluxDB service publicly accessible.

Remediation

It's recommended to restrict access to this service on production systems

References

Authentication and authorization in InfluxDB

Related Vulnerabilities

WordPress Plugin WP-RecentComments Information Disclosure (2.2.7)

OwnCloud phpinfo Information Disclosure (CVE-2023-49103)

TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-3529)

WordPress Plugin Helpful Information Disclosure (4.5.25)

Drupal Core 9.0.x Information Disclosure (9.0.0 - 9.0.5)

Severity

Medium

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure Configuration