CVE-2021-35943

CVE-2021-35943

EPSS 1.0%

Couchbase Server 6.5.x and 6.6.x through 6.6.2 has Incorrect Access Control. Externally managed users are not prevented from using an empty password, per RFC4513.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://docs.couchbase.com/server/current/release-notes/relnotes.html https://www.couchbase.com/alerts