Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Couchbase Server 6.x through 6.6.1. The Couchbase Server UI is insecurely logging session cookies in the logs. This allows for the impersonation of a user if the log files are obtained by an attacker before a session cookie expires.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Couchbase Server 安全漏洞
Vulnerability Description
Couchbase Server是美国Couchbase公司的一款分布式的开源NoSQL(非关系型)数据库,它主要支持数据查询、全文检索和主动全局复制等功能。 Couchbase Server UI 存在安全漏洞,该漏洞源于不安全地记录会话cookie。攻击者可利用该漏洞在会话cookie过期之前获得了日志文件,那么就允许对用户进行模拟。
CVSS Information
N/A
Vulnerability Type
N/A