exploitDog

GHSA-cm7f-fcwh-gc62

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Couchbase Server 6.5.x and 6.6.x through 6.6.2 has Incorrect Access Control. Externally managed users are not prevented from using an empty password, per RFC4513.

Couchbase Server 6.5.x and 6.6.x through 6.6.2 has Incorrect Access Control. Externally managed users are not prevented from using an empty password, per RFC4513.

Ссылки

EPSS

Процентиль: 59%

0.0038

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2021-35943

CVSS3: 9.8

nvd

больше 4 лет назад

Couchbase Server 6.5.x and 6.6.x through 6.6.2 has Incorrect Access Control. Externally managed users are not prevented from using an empty password, per RFC4513.

EPSS

Процентиль: 59%

0.0038

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-863