Approved changes feed: RSS · Atom

cpe:2.3:a:couchbase:couchbase_server:7.0.1:-:*:*:*:*:*:*

part: a version: 7.0.1 update: -

VendorCouchbase (75b35c19-6384-575a-856c-d68a8fd3e277)
ProductCouchbase Server (e100c321-0f35-5f96-a81f-506999d89dd6)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/couchbase/manifest purl2cpe 2026-06-01 10:17:18.446472
pkg:github/membase/manifest purl2cpe 2026-06-01 10:17:18.446474

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-37842 vulnerable 2026-06-08 05:32:55.216395 Details available
metakv in Couchbase Server 7.0.0 uses Cleartext for Storage of Sensitive Information. Remote Cluster XDCR credentials can get leaked in debug logs. Config key tombstone purging was added in Couchbase Server 7.0.0. This issue happens when a config key, which is being logged, has a tombstone purger time-stamp attached to it.
Published: 2021-11-02T11:39:24.000Z
Updated: 2024-08-04T01:30:09.145Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.