CVE-2023-49931 | Couchbase Server up to 7.2.3 SQL++ /diag/eval access control

Inserito da Angelo Barbosa | Feb 28, 2024 | CVE

A vulnerability was found in Couchbase Server up to 7.2.3 and classified as critical. This issue affects some unknown processing of the file /diag/eval of the component SQL++ Handler. The manipulation leads to improper access controls.

The identification of this vulnerability is CVE-2023-49931. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49931 | Couchbase Server up to 7.2.3 SQL++ /diag/eval access control

Post correlati

CVE-2024-0266 | Project Worlds Online Lawyer Management System 1.0 User Registration First Name cross site scripting

CVE-2024-3818 | Essential Blocks Plugin up to 4.5.9 on WordPress Social Icons Block cross site scripting

CVE-2024-3365 | SourceCodester Online Library System 1.0 controller.php user_name cross site scripting

CVE-2022-29966 | Emerson Ovation up to 3.8.0 FP1 missing authentication (icsa-24-158-02)