Filtered by vendor Couchbase
Subscriptions
Filtered by product Couchbase Server
Subscriptions
Total
49 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-32564 | 1 Couchbase | 1 Couchbase Server | 2024-08-03 | 7.5 High |
An issue was discovered in Couchbase Server before 7.0.4. In couchbase-cli, server-eshell leaks the Cluster Manager cookie. | ||||
CVE-2022-32557 | 1 Couchbase | 1 Couchbase Server | 2024-08-03 | 7.5 High |
An issue was discovered in Couchbase Server before 7.0.4. The Index Service does not enforce authentication for TCP/TLS servers. | ||||
CVE-2022-32562 | 1 Couchbase | 1 Couchbase Server | 2024-08-03 | 8.8 High |
An issue was discovered in Couchbase Server before 7.0.4. Operations may succeed on a collection using stale RBAC permission. | ||||
CVE-2022-32193 | 1 Couchbase | 1 Couchbase Server | 2024-08-03 | 6.5 Medium |
Couchbase Server 6.6.x through 7.x before 7.0.4 exposes Sensitive Information to an Unauthorized Actor. | ||||
CVE-2022-32192 | 1 Couchbase | 1 Couchbase Server | 2024-08-03 | 7.5 High |
Couchbase Server 5.x through 7.x before 7.0.4 exposes Sensitive Information to an Unauthorized Actor. | ||||
CVE-2023-28470 | 1 Couchbase | 1 Couchbase Server | 2024-08-02 | 5.3 Medium |
In Couchbase Server 5 through 7 before 7.1.4, the nsstats endpoint is accessible without authentication. | ||||
CVE-2023-25016 | 1 Couchbase | 1 Couchbase Server | 2024-08-02 | 7.5 High |
Couchbase Server before 6.6.6, 7.x before 7.0.5, and 7.1.x before 7.1.2 exposes Sensitive Information to an Unauthorized Actor. | ||||
CVE-2023-3079 | 7 Apple, Couchbase, Debian and 4 more | 7 Macos, Couchbase Server, Debian Linux and 4 more | 2024-08-02 | 8.8 High |
Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) | ||||
CVE-2023-2033 | 4 Couchbase, Debian, Fedoraproject and 1 more | 4 Couchbase Server, Debian Linux, Fedora and 1 more | 2024-08-02 | 8.8 High |
Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |