Vulnerability Details : CVE-2022-32558

CVE Name: CVE-2022-32558: Other vulnerability on Couchbase Couchbase Server
Description: An issue was discovered in Couchbase Server before 7.0.4. Sample bucket loading may leak internal user passwords during a failure.
Publish date: 2022-06-13T21:15Z
Last Update: 2022-06-22T17:56Z

CVSS Scores & Vulnerability Types

CVSS Score
7.5
Confidentiality ImpactHIGH
Integrity ImpactNONE
Availability ImpactNONE
Actack VectorNETWORK
Actack ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
ScopeUNCHANGED
Vulnerability Type(s)Other
CWE IDN/I

Products Affected By CVE-2022-32558

# Vendor Product Vulnerable Versions
1 Couchbase Couchbase Server 5

Detail of Verions Affected

# Product Type Vendor Product Version
1 Application Couchbase Couchbase Server 7.0.0
2 Application Couchbase Couchbase Server 7.0.1
3 Application Couchbase Couchbase Server 7.0.2
4 Application Couchbase Couchbase Server 7.0.3
5 Application Couchbase Couchbase Server *

References For CVE-2022-32558

Hyperlink Resource
https://www.couchbase.com/alerts Vendor Advisory
https://forums.couchbase.com/tags/security Vendor Advisory
https://docs.couchbase.com/server/current/release-notes/relnotes.html Release Notes, Vendor Advisory