CVE-2025-52490 | Couchbase Sync Gateway up to 3.2.5 sgcollect_info_options.log missing encryption

Inserito da Angelo Barbosa | Lug 29, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Couchbase Sync Gateway up to 3.2.5. Affected by this issue is some unknown functionality of the file sgcollect_info_options.log. The manipulation leads to missing encryption of sensitive data.

This vulnerability is handled as CVE-2025-52490. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-52490 | Couchbase Sync Gateway up to 3.2.5 sgcollect_info_options.log missing encryption

Post correlati

CVE-2025-8164 | code-projects Public Chat Room 1.0 send_message.php ID sql injection

CVE-2023-32462 | Dell SmartFabric OS10 os command injection (dsa-2023-124)

CVE-2022-48621 | Huawei HarmonyOS/EMUI Wi-Fi Module missing authentication

CVE-2022-48614 | Semantic MediaWiki up to 4.0.1 Special:Ask cross site scripting (Issue 5262)