Vulnerabilities > CVE-2023-49930 - Unspecified vulnerability in Couchbase Server

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

critical

NVD

Published: 2024-02-29

Updated: 2025-02-14

Summary

An issue was discovered in Couchbase Server before 7.2.4. cURL calls to /diag/eval are not sufficiently restricted.

Part	Description	Count
Application	Couchbase Couchbase Couchbase Server 7.1.5 Couchbase Couchbase Server 7.2.0 Couchbase Couchbase Server 7.2.1 Couchbase Couchbase Server 7.2.2 Couchbase Couchbase Server 7.2.3	5