How severe is CVE-2024-37034?

CVE-2024-37034 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2024-37034

Name: couchbase_server
Author: couchbase

5.9MEDIUM

An issue was discovered in Couchbase Server before 7.2.5 and 7.6.0 before 7.6.1. It does not ensure that credentials are negotiated with the Key-Value (KV) service using SCRAM-SHA when remote link enc

Veröffentlicht: 7/26/2024Aktualisiert: 3/14/2025

Beschreibung

An issue was discovered in Couchbase Server before 7.2.5 and 7.6.0 before 7.6.1. It does not ensure that credentials are negotiated with the Key-Value (KV) service using SCRAM-SHA when remote link encryption is configured for Half-Secure.

KI-AnalyseKI-gestützt

Betroffene Produkte

couchbasecouchbase_server

7.6.0

Referenzen

https://www.couchbase.com/alerts/
Vendor Advisory
https://www.couchbase.com/alerts/
Vendor Advisory