How severe is CVE-2024-37034?

CVE-2024-37034 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2024-37034

Name: couchbase_server
Author: couchbase

5.9MEDIUM

An issue was discovered in Couchbase Server before 7.2.5 and 7.6.0 before 7.6.1. It does not ensure that credentials are negotiated with the Key-Value (KV) service using SCRAM-SHA when remote link enc

Published: 7/26/2024Updated: 3/14/2025

Description

An issue was discovered in Couchbase Server before 7.2.5 and 7.6.0 before 7.6.1. It does not ensure that credentials are negotiated with the Key-Value (KV) service using SCRAM-SHA when remote link encryption is configured for Half-Secure.

AI AnalysisPowered by AI

Affected Products

couchbasecouchbase_server

7.6.0

References

https://www.couchbase.com/alerts/
Vendor Advisory
https://www.couchbase.com/alerts/
Vendor Advisory