Couchbase Server 7.2.0: Private Key Log Leak when Adding Pre-7.0 Node
CVE-2023-45875 Published on November 8, 2023

An issue was discovered in Couchbase Server 7.2.0. There is a private key leak in debug.log while adding a pre-7.0 node to a 7.2 cluster.

NVD

Weakness Type

What is an Information Disclosure Vulnerability?

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

CVE-2023-45875 has been classified to as an Information Disclosure vulnerability or weakness.

Products Associated with CVE-2023-45875

Want to know whenever a new CVE is published for Couchbase Server? stack.watch will email you.

Couchbase Server

Exploit Probability

EPSS

0.46%

Percentile

64.01%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Couchbase Server 7.2.0: Private Key Log Leak when Adding Pre-7.0 NodeCVE-2023-45875 Published on November 8, 2023

Weakness Type

What is an Information Disclosure Vulnerability?

Products Associated with CVE-2023-45875

Exploit Probability

Couchbase Server 7.2.0: Private Key Log Leak when Adding Pre-7.0 Node
CVE-2023-45875 Published on November 8, 2023