The host is installed with Apache CouchDB before 3.2.3 or Apache CouchDB 3.3.0 before 3.3.2 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle the couchjs processes. Successful exploitation could allow attakers to share a mutable Javascript environment when using the Design documents with matching document IDs, from databas ...