Explore top 10 tips to secure your open-source projects now. Read More
×
An InfluxDB vulnerability allowed attackers to login as any known
database user.
Software Description:
- influxdb: Scalable datastore for metrics, events, and real-time analytics
Details:
Ilya Averyanov discovered that an InfluxDB vulnerability allowed
attackers to bypass authentication and gain access to any known
database user.
The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: influxdb 1.6.4-1+deb10u1build0.20.04.1 Ubuntu 18.04 LTS: influxdb 1.1.1+dfsg1-4+deb9u1ubuntu1 After a standard system update you need to restart the influxdb service to make all the necessary changes.
https://ubuntu.com/security/notices/USN-5451-1
CVE-2019-20933
Get the latest Linux and open source security news straight to your inbox.