CVE advisoryCRITICAL
CVE-2022-36640
InfluxDB Unauthenticated Command Execution Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
InfluxDB deployments without enabled authentication allow unauthenticated attackers to execute arbitrary commands. This vulnerability is relevant if the database is exposed on a network without authentication controls, potentially impacting data and system operations.