CVE-2016-10546

{"id": "CVE-2016-10546", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": true, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2018-05-31T20:29:01.690", "references": [{"url": "https://nodesecurity.io/advisories/143", "tags": ["Third Party Advisory"], "source": "support@hackerone.com"}, {"url": "https://nodesecurity.io/advisories/143", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "support@hackerone.com", "description": [{"lang": "en", "value": "CWE-94"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-94"}]}], "descriptions": [{"lang": "en", "value": "An arbitrary code injection vector was found in PouchDB 6.0.4 and lesser via the map/reduce functions used in PouchDB temporary views and design documents. The code execution engine for this branch is not properly sandboxed and may be used to run arbitrary JavaScript as well as system commands."}, {"lang": "es", "value": "Se ha encontrado un vector de inyecci\u00f3n de c\u00f3digo arbitrario en PouchDB en versiones 6.0.4 y anteriores mediante las funciones map/reduce empleadas en las vistas temporales y en el dise\u00f1o de documentos de PouchDB. El motor de ejecuci\u00f3n de c\u00f3digo para este branch no est\u00e1 debidamente pasado a sandbox y podr\u00eda emplearse para ejecutar JavaScript arbitrario, adem\u00e1s de comandos del sistema."}], "lastModified": "2024-11-21T02:44:14.320", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:pouchdb:pouchdb:*:*:*:*:*:node.js:*:*", "vulnerable": true, "matchCriteriaId": "711520EB-A1CC-4576-80C7-0F8D77A65A6E", "versionEndIncluding": "6.0.4"}], "operator": "OR"}]}], "sourceIdentifier": "support@hackerone.com"}