CVE-2010-0009
published 2010-04-05CVE-2010-0009: Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain sensitive information by measuring the completion time of operations that verify (1)…
medium4.3CVSS 3.1
AVNACMAuNCPINAN
Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain sensitive information by measuring the completion time of operations that verify (1) hashes or (2) passwords.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | couchdb | — | — |
| apache | couchdb | — | — |
| apache | couchdb | — | — |
| apache | couchdb | — | — |
| apache | couchdb | — | — |
| apache | couchdb | — | — |
| apache | couchdb | — | — |