Show filters
54 Total Results
Displaying 21-30 of 54
Sort by:
Attacker Value
Unknown

CVE-2022-32559

Disclosure Date: June 14, 2022 (last updated October 07, 2023)
An issue was discovered in Couchbase Server before 7.0.4. Random HTTP requests lead to leaked metrics.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-32557

Disclosure Date: June 14, 2022 (last updated October 07, 2023)
An issue was discovered in Couchbase Server before 7.0.4. The Index Service does not enforce authentication for TCP/TLS servers.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-32565

Disclosure Date: June 13, 2022 (last updated October 07, 2023)
An issue was discovered in Couchbase Server before 7.0.4. The Backup Service log leaks unredacted usernames and document ids.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-32562

Disclosure Date: June 13, 2022 (last updated October 07, 2023)
An issue was discovered in Couchbase Server before 7.0.4. Operations may succeed on a collection using stale RBAC permission.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-32192

Disclosure Date: June 13, 2022 (last updated October 07, 2023)
Couchbase Server 5.x through 7.x before 7.0.4 exposes Sensitive Information to an Unauthorized Actor.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-32564

Disclosure Date: June 13, 2022 (last updated October 07, 2023)
An issue was discovered in Couchbase Server before 7.0.4. In couchbase-cli, server-eshell leaks the Cluster Manager cookie.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-32560

Disclosure Date: June 13, 2022 (last updated October 07, 2023)
An issue was discovered in Couchbase Server before 7.0.4. XDCR lacks role checking when changing internal settings.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-32558

Disclosure Date: June 13, 2022 (last updated October 07, 2023)
An issue was discovered in Couchbase Server before 7.0.4. Sample bucket loading may leak internal user passwords during a failure.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-32193

Disclosure Date: June 13, 2022 (last updated October 07, 2023)
Couchbase Server 6.6.x through 7.x before 7.0.4 exposes Sensitive Information to an Unauthorized Actor.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-33504

Disclosure Date: June 02, 2022 (last updated October 07, 2023)
Couchbase Server before 7.1.0 has Incorrect Access Control.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0
View More Topics  < Previous  Next >