Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-25673

Couchbase Server 7.6.x before 7.6.2, 7.2.x before 7.2.6, and all earlier versions allows HTTP Host header injection.

Published

2024-09-19T19:15:24.093

Last Modified

2025-03-19T21:15:35.733

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.1 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-74
  • Type: Secondary
    CWE-74
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application couchbase couchbase_server < 7.2.6 Yes
Application couchbase couchbase_server < 7.6.2 Yes
References