CVE-2022-24706 Apache CouchDB: Emulation and Detection
In this lab, you’ll practice abusing an Apache CouchDB service via remote authentication bypass. When you’re finished, you’ll have an understanding of vulnerability and how to detect and defend against it and similar attacks.
Terms and conditions apply.
Challenge
Getting Started in the Lab Environment
Here are the initial instructions and explanation of the lab environment. Read this while your environment is busy creating itself from nothing. Yes, this violates physics; we know. How fun!
Challenge
Setup: Configure a Test Apache CouchDB Server
You will finalize the configuration of a test Apache CouchDB Server to validate exploitation of the CVE-2022-24706 vulnerability.
Challenge
Emulation: Verify Apache CouchDB Vulnerability to CVE-2022-24706
In this challenge, you’ll respond to an alert from your Attack Surface Management tool indicating that Shodan indexed a vulnerable Apache CouchDB version on the public Internet. You’ll learn how to verify the legitimacy of the security issue by interacting with the potentially vulnerable web server and performing a remote authentication bypass.
Challenge
Detection: Find Indicators of Attempted CVE-2022-24706 Exploitation
In this challenge, you’ll review the Apache CouchDB server application logs and network activity to understand what (if any) indicators of compromise are created. You’ll use the activity performed in the previous challenge to validate detection mechanisms are working as desired.
Challenge
Protection: Thwart CVE-2022-24706 Attack Attempts
In this challenge, you’ll use the knowledge gained in the two previous challenges to make a decision on how to best mitigate the vulnerability in lieu of an official update. You’ll assume that the primary API available on TCP port 5984 must remain public facing to continue providing necessary services.
Challenge
Bonus: Taking It One Step Further
Welcome to the final challenge! This is your last chance to experiment in the environment. Clicking Finish Lab will end this little world that flittered into existence just for you.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Guided walkthrough
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.
Recommended prerequisites
- Linux Network and Host Security
- Network Security Monitoring with Suricata
- Reconnaissance with Shodan
- Practical CouchDB for Developers
- Guide: 10 Essential Erlang Tools for Erlang Developers