CVE-2021-43963
CVE-2021-43963 affects Couchbase Sync Gateway 2.7.0–2.8.2. The bucket credentials used to read/write data were insecurely stored in metadata within Sync Gateway’s bucket sync documents. A user with read access could leverage those credentials to obtain write access to the Couchbase Server. The is...