Lucene search
+L

5 matches found

CNNVD
CNNVD
added 2026/05/04 12:0 a.m.12 views

Apache Polaris 输入验证错误漏洞

Apache Polaris is a data management and query service component of the Apache Foundation. Version 1.4.0 of Apache Polaris contains a vulnerability related to input validation. This vulnerability arises from the lack of escaping of namespace or table identifiers when constructing Google Cloud...

9.9CVSS5.8AI score0.00431EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-30825

Malicious code in bioql PyPI...

8.1CVSS8.1AI score0.00501EPSS
Exploits0References1
Veracode
Veracode
added 2021/12/15 11:55 p.m.22 views

Privilege Escalation

github.com/couchbase/syncgateway is vulnerable to privilege escalation. The vulnerability exists because of storage of bucket credentials in the metadata within sync documents written to the bucket, allowing a user with read privilege to perform write access to data in Couchbase Server. Note: Thi...

8.1CVSS3.4AI score0.00501EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/12/07 10:15 p.m.3 views

CVE-2021-43963

An issue was discovered in Couchbase Sync Gateway 2.7.0 through 2.8.2. The bucket credentials used to read and write data in Couchbase Server were insecurely being stored in the metadata within sync documents written to the bucket. Users with read access could use these credentials to obtain writ...

8.1CVSS7.3AI score0.00501EPSS
Exploits0References2
OSV
OSV
added 2021/12/07 10:15 p.m.6 views

CVE-2021-43963

An issue was discovered in Couchbase Sync Gateway 2.7.0 through 2.8.2. The bucket credentials used to read and write data in Couchbase Server were insecurely being stored in the metadata within sync documents written to the bucket. Users with read access could use these credentials to obtain writ...

8.1CVSS7.3AI score0.00501EPSS
Exploits0References1
Rows per page
Query Builder