A vulnerability has been found in Couchbase Server up to 7.2.3 and classified as critical. This vulnerability affects unknown code of the file /diag/eval of the component cURL. The manipulation leads to improper access controls.

This vulnerability was named CVE-2023-49930. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.