Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
influxData influxDB before v1.8.10 contains no authentication mechanism or controls, allowing unauthenticated attackers to execute arbitrary commands. NOTE: the CVE ID assignment is disputed because the vendor's documentation states "If InfluxDB is being deployed on a publicly accessible endpoint, we strongly recommend authentication be enabled. Otherwise the data will be publicly available to any unauthenticated user. The default settings do NOT enable authentication and authorization.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
InfluxData InfluxDB 安全漏洞
Vulnerability Description
InfluxData InfluxDB是美国InfluxData公司的一个基于Go开发的时序性数据库。 InfluxData InfluxDB v1.8.10之前版本存在安全漏洞,该漏洞源于不包含任何身份验证机制或控件。攻击者利用该漏洞执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A