How severe is CVE-2024-37034?

CVE-2024-37034 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2024-37034

Name: couchbase_server
Author: couchbase

5.9MEDIUM

An issue was discovered in Couchbase Server before 7.2.5 and 7.6.0 before 7.6.1. It does not ensure that credentials are negotiated with the Key-Value (KV) service using SCRAM-SHA when remote link enc

Publicado: 7/26/2024Actualizado: 3/14/2025

Descripción

An issue was discovered in Couchbase Server before 7.2.5 and 7.6.0 before 7.6.1. It does not ensure that credentials are negotiated with the Key-Value (KV) service using SCRAM-SHA when remote link encryption is configured for Half-Secure.

Análisis IAImpulsado por IA

Productos Afectados

couchbasecouchbase_server

7.6.0

Referencias

https://www.couchbase.com/alerts/
Vendor Advisory
https://www.couchbase.com/alerts/
Vendor Advisory