Approved changes feed: RSS · Atom

cpe:2.3:a:couchbase:couchbase_server:7.0.1:*:*:*:*:*:*:*

part: a version: 7.0.1 update: *

VendorCouchbase (75b35c19-6384-575a-856c-d68a8fd3e277)
ProductCouchbase Server (e100c321-0f35-5f96-a81f-506999d89dd6)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:github/couchbase/manifest purl2cpe 2026-06-01 10:17:18.433793
pkg:github/membase/manifest purl2cpe 2026-06-01 10:17:18.433794

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2022-32558 vulnerable 2026-06-08 05:44:45.129821 Details available
An issue was discovered in Couchbase Server before 7.0.4. Sample bucket loading may leak internal user passwords during a failure.
Published: 2022-06-13T20:45:46.000Z
Updated: 2024-08-03T07:46:43.614Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-32193 vulnerable 2026-06-08 05:44:42.667196 Details available
Couchbase Server 6.6.x through 7.x before 7.0.4 exposes Sensitive Information to an Unauthorized Actor.
Published: 2022-06-13T20:45:55.000Z
Updated: 2024-08-03T07:32:56.023Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-42763 vulnerable 2026-06-08 05:35:22.902937 Details available
Couchbase Server before 6.6.3 and 7.x before 7.0.2 stores Sensitive Information in Cleartext. The issue occurs when the cluster manager forwards a HTTP request from the pluggable UI (query workbench etc) to the specific service. In the backtrace, the Basic Auth Header included in the HTTP request, has the "@" user credentials of the node processing the UI request.
Published: 2021-11-02T11:46:24.000Z
Updated: 2024-08-04T03:38:50.230Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.