CVE-2022-32557
https://notcve.org/view.php?id=CVE-2022-32557
An issue was discovered in Couchbase Server before 7.0.4. The Index Service does not enforce authentication for TCP/TLS servers. Se ha detectado un problema en Couchbase Server versiones anteriores a 7.0.4. El servicio de índices no aplica la autenticación para los servidores TCP/TLS • https://docs.couchbase.com/server/current/release-notes/relnotes.html https://forums.couchbase.com/tags/security https://www.couchbase.com/alerts • CWE-306: Missing Authentication for Critical Function •
CVE-2022-32561
https://notcve.org/view.php?id=CVE-2022-32561
An issue was discovered in Couchbase Server before 6.6.5 and 7.x before 7.0.4. Previous mitigations for CVE-2018-15728 were found to be insufficient when it was discovered that diagnostic endpoints could still be accessed from the network. Se ha detectado un problema en Couchbase Server versiones anteriores a 6.6.5 y versiones 7.x anteriores a 7.0.4. Las mitigaciones anteriores para CVE-2018-15728 resultaron insuficientes cuando ha sido detectado que se podía seguir accediendo a los endpoints de diagnóstico desde la red • https://docs.couchbase.com/server/current/release-notes/relnotes.html https://forums.couchbase.com/tags/security https://www.couchbase.com/alerts •
CVE-2022-32192
https://notcve.org/view.php?id=CVE-2022-32192
Couchbase Server 5.x through 7.x before 7.0.4 exposes Sensitive Information to an Unauthorized Actor. Couchbase Server versiones 5.x hasta 7.x anteriores a 7.0.4, expone Información Confidencial a un Actor no Autorizado • https://docs.couchbase.com/server/current/release-notes/relnotes.html https://www.couchbase.com/alerts • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2022-32193
https://notcve.org/view.php?id=CVE-2022-32193
Couchbase Server 6.6.x through 7.x before 7.0.4 exposes Sensitive Information to an Unauthorized Actor. Couchbase Server versiones 6.6.x hasta 7.x anteriores a 7.0.4, expone información confidencial a un actor no autorizado • https://docs.couchbase.com/server/current/release-notes/relnotes.html https://www.couchbase.com/alerts • CWE-532: Insertion of Sensitive Information into Log File •
CVE-2022-32558
https://notcve.org/view.php?id=CVE-2022-32558
An issue was discovered in Couchbase Server before 7.0.4. Sample bucket loading may leak internal user passwords during a failure. Se ha detectado un problema en Couchbase Server versiones anteriores a 7.0.4. La carga de cubos de muestra puede filtrar las contraseñas de usuarios internos durante un fallo • https://docs.couchbase.com/server/current/release-notes/relnotes.html https://forums.couchbase.com/tags/security https://www.couchbase.com/alerts •