Описание
An issue was discovered in Couchbase Server 5.5.0 and 6.0.0. The Eventing debug endpoint mishandles authentication and audit.
An issue was discovered in Couchbase Server 5.5.0 and 6.0.0. The Eventing debug endpoint mishandles authentication and audit.
EPSS
Процентиль: 54%
0.00311
Низкий
CVE ID
Связанные уязвимости
CVSS3: 5.3
nvd
около 6 лет назад
In Couchbase Server 6.0.0 and 5.5.0, the eventing service exposes system diagnostic profile via an HTTP endpoint that does not require credentials on a port earmarked for internal traffic only. This has been remedied in version 6.0.1 and now requires valid credentials to access.
EPSS
Процентиль: 54%
0.00311
Низкий