Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
InfluxDB Unauthorized Access Vulnerability - Vulnerability Database

InfluxDB Unauthorized Access Vulnerability

Description

InfluxDB is an open-source time series database

InfluxDB is designed to be accessed inside trusted environments. It's not recommended to have InfluxDB service publicly accessible.

Remediation

It's recommended to restrict access to this service on production systems

References

Authentication and authorization in InfluxDB

Related Vulnerabilities

Trace.axd Detected High
Common tags: Information Disclosure Configuration
Nuxt.js Running in Development Mode Low
Common tags: Information Disclosure Configuration
Laravel Terminal open High
Common tags: Information Disclosure Configuration
Core dump file High
Common tags: Information Disclosure Configuration
GoCD information disclosure (CVE-2021-43287) High
Common tags: Information Disclosure Configuration

Severity

Medium

Classification

CWE-200
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure
Configuration