Vulnerabilities > Couchbase

DATE CVE VULNERABILITY TITLE RISK
2024-09-19 CVE-2024-25673 Injection vulnerability in Couchbase Server
Couchbase Server 7.6.x before 7.6.2, 7.2.x before 7.2.6, and all earlier versions allows HTTP Host header injection.
network
low complexity
couchbase CWE-74
6.1
2024-07-26 CVE-2024-37034 Inadequate Encryption Strength vulnerability in Couchbase Server
An issue was discovered in Couchbase Server before 7.2.5 and 7.6.0 before 7.6.1.
network
high complexity
couchbase CWE-326
5.9
2024-02-05 CVE-2023-50782 Information Exposure Through Discrepancy vulnerability in multiple products
A flaw was found in the python-cryptography package.
network
low complexity
redhat cryptography-io couchbase CWE-203
7.5
2024-01-16 CVE-2024-0519 Out-of-bounds Write vulnerability in multiple products
Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject couchbase CWE-787
8.8
2023-11-08 CVE-2023-36667 Path Traversal vulnerability in Couchbase Server
Couchbase Server 7.1.4 before 7.1.5 and 7.2.0 before 7.2.1 allows Directory Traversal.
network
low complexity
couchbase CWE-22
7.5
2023-11-08 CVE-2023-45875 Unspecified vulnerability in Couchbase Server 7.2.0
An issue was discovered in Couchbase Server 7.2.0.
network
low complexity
couchbase
7.5
2023-06-05 CVE-2023-3079 Type Confusion vulnerability in multiple products
Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian couchbase CWE-843
8.8
2023-04-14 CVE-2023-2033 Type Confusion vulnerability in multiple products
Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian fedoraproject couchbase CWE-843
8.8
2023-02-06 CVE-2022-42950 Unspecified vulnerability in Couchbase Server
An issue was discovered in Couchbase Server 7.x before 7.0.5 and 7.1.x before 7.1.2.
network
low complexity
couchbase
4.9
2023-02-06 CVE-2022-42951 Race Condition vulnerability in Couchbase Server
An issue was discovered in Couchbase Server 6.5.x and 6.6.x before 6.6.6, 7.x before 7.0.5, and 7.1.x before 7.1.2.
network
high complexity
couchbase CWE-362
8.1