Vulnerabilities > Couchbase
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-19 | CVE-2024-25673 | Injection vulnerability in Couchbase Server Couchbase Server 7.6.x before 7.6.2, 7.2.x before 7.2.6, and all earlier versions allows HTTP Host header injection. | 6.1 |
| 2024-07-26 | CVE-2024-37034 | Inadequate Encryption Strength vulnerability in Couchbase Server An issue was discovered in Couchbase Server before 7.2.5 and 7.6.0 before 7.6.1. | 5.9 |
| 2024-02-29 | CVE-2024-23302 | Unspecified vulnerability in Couchbase Server Couchbase Server before 7.2.4 has a private key leak in goxdcr.log. | 7.5 |
| 2024-02-29 | CVE-2023-45874 | Unspecified vulnerability in Couchbase Server An issue was discovered in Couchbase Server through 7.2.2. | 4.3 |
| 2024-02-29 | CVE-2023-49930 | Unspecified vulnerability in Couchbase Server An issue was discovered in Couchbase Server before 7.2.4. | 9.8 |
| 2024-02-05 | CVE-2023-50782 | Information Exposure Through Discrepancy vulnerability in multiple products A flaw was found in the python-cryptography package. | 7.5 |
| 2024-01-16 | CVE-2024-0519 | Out-of-bounds Write vulnerability in multiple products Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2023-11-08 | CVE-2023-36667 | Path Traversal vulnerability in Couchbase Server Couchbase Server 7.1.4 before 7.1.5 and 7.2.0 before 7.2.1 allows Directory Traversal. | 7.5 |
| 2023-11-08 | CVE-2023-45875 | Unspecified vulnerability in Couchbase Server 7.2.0 An issue was discovered in Couchbase Server 7.2.0. | 7.5 |
| 2023-06-05 | CVE-2023-3079 | Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |