Couchbase Server@7.2.0 Security Vulnerabilities and Issues — Couchbase Server@7.2.0 CVE List

Lucene search

CouchbaseCouchbase Server7.2.0

6 matches found

CVE•added 2023/04/14 7:15 p.m.•1066 views

CVE-2023-2033

Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.9AI score0.0714EPSS

CVE•added 2023/06/05 10:15 p.m.•729 views

CVE-2023-3079

Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.6AI score0.00526EPSS

CVE•added 2024/02/28 10:15 p.m.•68 views

CVE-2023-49338

Couchbase Server 7.1.x and 7.2.x before 7.2.4 does not require authentication for the /admin/stats and /admin/vitals endpoints on TCP port 8093 of localhost.

7.5CVSS7.1AI score0.00272EPSS

CVE•added 2024/03/27 7:15 a.m.•40 views

CVE-2023-43768

An issue was discovered in Couchbase Server 6.6.x through 7.2.0, before 7.1.5 and 7.2.1. Unauthenticated users may cause memcached to run out of memory via large commands.

7.5CVSS6.8AI score0.00376EPSS

CVE•added 2023/11/08 10:15 p.m.•38 views

CVE-2023-36667

Couchbase Server 7.1.4 before 7.1.5 and 7.2.0 before 7.2.1 allows Directory Traversal.

7.5CVSS7.5AI score0.01004EPSS

CVE•added 2023/11/08 9:15 p.m.•31 views

CVE-2023-45875

An issue was discovered in Couchbase Server 7.2.0. There is a private key leak in debug.log while adding a pre-7.0 node to a 7.2 cluster.

7.5CVSS7.4AI score0.00356EPSS