Couchbase Server 7.2.1

CPE Details

Couchbase Server 7.2.1
couchbase
couchbase_server
7.2.1
2024-08-16
20h57 +00:00
2024-08-16
20h57 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:couchbase:couchbase_server:7.2.1:*:*:*:*:*:*:*

Informations

Vendor

couchbase

Product

couchbase_server

Version

7.2.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-25673 2024-09-18 22h00 +00:00 Couchbase Server 7.6.x before 7.6.2, 7.2.x before 7.2.6, and all earlier versions allows HTTP Host header injection.
6.1
Medium
CVE-2024-37034 2024-07-25 22h00 +00:00 An issue was discovered in Couchbase Server before 7.2.5 and 7.6.0 before 7.6.1. It does not ensure that credentials are negotiated with the Key-Value (KV) service using SCRAM-SHA when remote link encryption is configured for Half-Secure.
5.9
Medium
CVE-2023-45874 2024-02-27 23h00 +00:00 An issue was discovered in Couchbase Server through 7.2.2. A data reader may cause a denial of service (outage of reader threads).
4.3
Medium
CVE-2023-49930 2024-02-27 23h00 +00:00 An issue was discovered in Couchbase Server before 7.2.4. cURL calls to /diag/eval are not sufficiently restricted.
9.8
Critical
CVE-2024-23302 2024-02-27 23h00 +00:00 Couchbase Server before 7.2.4 has a private key leak in goxdcr.log.
7.5
High
CVE-2024-0519 2024-01-16 21h14 +00:00 Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
8.8
High