metakv in Couchbase Server 7.0.0 uses Cleartext for Storage of Sensitive Information. Remote Cluster XDCR credentials can get leaked in debug logs. Config key tombstone purging was added in Couchbase Server 7.0.0. This issue happens when a config key, which is being logged, has a tombstone purger time-stamp attached to it.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-11-02T11:39:24

Updated: 2024-08-04T01:30:09.145Z

Reserved: 2021-08-02T00:00:00

Link: CVE-2021-37842

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2021-11-02T12:15:07.773

Modified: 2021-11-08T14:53:59.167

Link: CVE-2021-37842

cve-icon Redhat

No data.