Описание
An issue was discovered in Couchbase Server 7.x before 7.0.5 and 7.1.x before 7.1.2. A crafted HTTP REST request from an administrator account to the Couchbase Server Backup Service can exhaust memory resources, causing the process to be killed, which can be used for denial of service.
Ссылки
- Release Notes
- Issue Tracking
- Vendor Advisory
- Release Notes
- Issue Tracking
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 7.0.0 (включая) до 7.0.5 (исключая)Версия от 7.1.0 (включая) до 7.1.2 (исключая)
Одно из
cpe:2.3:a:couchbase:couchbase_server:*:*:*:*:*:*:*:*
cpe:2.3:a:couchbase:couchbase_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 48%
0.00247
Низкий
4.9 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-400
Связанные уязвимости
CVSS3: 4.9
github
около 3 лет назад
An issue was discovered in Couchbase Server 7.x before 7.0.5 and 7.1.x before 7.1.2. A crafted HTTP REST request from an administrator account to the Couchbase Server Backup Service can exhaust memory resources, causing the process to be killed, which can be used for denial of service.
EPSS
Процентиль: 48%
0.00247
Низкий
4.9 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-400