Vulnerabilities > Couchbase > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-14 | CVE-2022-32559 | Allocation of Resources Without Limits or Throttling vulnerability in Couchbase Server An issue was discovered in Couchbase Server before 7.0.4. | 9.1 |
| 2020-11-12 | CVE-2020-24719 | OS Command Injection vulnerability in Couchbase Server 6.5.1 Exposed Erlang Cookie could lead to Remote Command Execution (RCE) attack. | 10.0 |
| 2019-09-10 | CVE-2019-11495 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Couchbase Server 5.1.1 In Couchbase Server 5.1.1, the cookie used for intra-node communication was not generated securely. | 9.8 |
| 2018-08-24 | CVE-2018-15728 | Code Injection vulnerability in Couchbase Server Couchbase Server exposed the '/diag/eval' endpoint which by default is available on TCP/8091 and/or TCP/18091. | 9.0 |