Couchbase Server is a distributed open source NoSQL (non-relational) database from Couchbase USA, which mainly supports data query, full-text search and active global replication. couchbase Server is vulnerable to an information disclosure vulnerability, which originates from couchbase-cli that exposes the Secrets The vulnerability is caused by couchbase-cli leaking Secrets master password as a command line parameter, and the following products and versions are affected: 7.0.3, 7.0.2, 7.0.1, 7.0.0, 6.x, 5.x. An attacker could use this vulnerability to gain access to sensitive files.
CPE | Name | Operator | Version |
---|---|---|---|
couchbase Couchbase Server >=5.0.0, | lt | 7.0.4 |