Couchbase 6.x < 7.2.5 / 7.6.x < 7.6.1 Information Disclosure

🗓️ 30 Dec 2024 00:00:00Reported by TenableType

Couchbase versions below 7.2.5 or 7.6.1 expose credentials to man-in-the-middle attacks.

Reporter	Title	Published	Views	Family All 11
BDU FSTEC	The vulnerability of the KV Service component in the Couchbase Server database management system for NoSQL databases allows attackers to disclose sensitive information.	9 Sep 202400:00	–	bdu_fstec
Circl	CVE-2024-37034	27 Jul 202400:43	–	circl
CNNVD	Couchbase Server 安全漏洞	26 Jul 202400:00	–	cnnvd
CVE	CVE-2024-37034	26 Jul 202400:00	–	cve
Cvelist	CVE-2024-37034	26 Jul 202400:00	–	cvelist
EUVD	EUVD-2024-36402	3 Oct 202520:07	–	euvd
NVD	CVE-2024-37034	26 Jul 202422:15	–	nvd
OSV	CVE-2024-37034	26 Jul 202422:15	–	osv
Positive Technologies	PT-2024-5971 · Couchbase · Couchbase Server	31 May 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-37034	23 May 202507:29	–	redhatcve

Source	Link
couchbase	www.couchbase.com/alerts/
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900

##
# Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(213435);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/06/13");

  script_cve_id("CVE-2024-37034");

  script_name(english:"Couchbase 6.x < 7.2.5 / 7.6.x < 7.6.1 Information Disclosure");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of Couchbase installed on the remote host is 6.x, prior to 7.2.5, and 7.6.x prior to 7.6.1. 
It is, therefore, affected by an information disclosure issue. It does not ensure that credentials are 
negotiated with the Key-Value (KV) service using SCRAM-SHA when remote link encryption is configured for 
Half-Secure.  A remote attacker could perform a man-in-the-middle attack and negotiate for plain credentials.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.");
  script_set_attribute(attribute:"see_also", value:"https://www.couchbase.com/alerts/");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Couchbase version 7.2.5, 7.6.1, or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:C/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-37034");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(326);

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/07/26");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/07/26");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/12/30");

  script_set_attribute(attribute:"agent", value:"all");
  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:couchbase:couchbase_server");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Databases");

  script_copyright(english:"This script is Copyright (C) 2024-2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("couchbase_server_win_installed.nbin", "couchbase_server_nix_installed.nbin");
  script_require_keys("installed_sw/Couchbase Server");

  exit(0);
}

include('vcf.inc');

var app_info = vcf::get_app_info(app:'Couchbase Server');
var constraints = [
    { 'min_version':'6.0', 'fixed_version':'7.2.5' },
    { 'min_version':'7.6.0', 'fixed_version':'7.6.1' },
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);

13 Jun 2025 00:00Current

5.6Medium risk

Vulners AI Score5.6

CVSS 3.15.9

EPSS0.00183

SSVC