Vulnerabilities > Couchbase > High

DATE CVE VULNERABILITY TITLE RISK
2024-02-05 CVE-2023-50782 Information Exposure Through Discrepancy vulnerability in multiple products
A flaw was found in the python-cryptography package.
network
low complexity
redhat cryptography-io couchbase CWE-203
7.5
7.5
2024-01-16 CVE-2024-0519 Out-of-bounds Write vulnerability in multiple products
Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject couchbase CWE-787
8.8
8.8
2023-11-08 CVE-2023-36667 Path Traversal vulnerability in Couchbase Server
Couchbase Server 7.1.4 before 7.1.5 and 7.2.0 before 7.2.1 allows Directory Traversal.
network
low complexity
couchbase CWE-22
7.5
7.5
2023-11-08 CVE-2023-45875 Unspecified vulnerability in Couchbase Server 7.2.0
An issue was discovered in Couchbase Server 7.2.0.
network
low complexity
couchbase
7.5
7.5
2023-06-05 CVE-2023-3079 Type Confusion vulnerability in multiple products
Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian couchbase CWE-843
8.8
8.8
2023-04-14 CVE-2023-2033 Type Confusion vulnerability in multiple products
Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian fedoraproject couchbase CWE-843
8.8
8.8
2023-02-06 CVE-2022-42951 Race Condition vulnerability in Couchbase Server
An issue was discovered in Couchbase Server 6.5.x and 6.6.x before 6.6.6, 7.x before 7.0.5, and 7.1.x before 7.1.2.
network
high complexity
couchbase CWE-362
8.1
8.1
2023-02-06 CVE-2023-25016 Cleartext Transmission of Sensitive Information vulnerability in Couchbase Server
Couchbase Server before 6.6.6, 7.x before 7.0.5, and 7.1.x before 7.1.2 exposes Sensitive Information to an Unauthorized Actor.
network
low complexity
couchbase CWE-319
7.5
7.5
2022-06-14 CVE-2022-32557 Missing Authentication for Critical Function vulnerability in Couchbase Server
An issue was discovered in Couchbase Server before 7.0.4.
network
low complexity
couchbase CWE-306
7.5
7.5
2022-06-13 CVE-2022-32560 Missing Authorization vulnerability in Couchbase Server
An issue was discovered in Couchbase Server before 7.0.4.
network
low complexity
couchbase CWE-862
7.5
7.5