Vulnerabilities > CVE-2022-32560 - Missing Authorization vulnerability in Couchbase Server

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
couchbase
CWE-862

Summary

An issue was discovered in Couchbase Server before 7.0.4. XDCR lacks role checking when changing internal settings.

Common Weakness Enumeration (CWE)