CVE-2021-42763

Couchbase Server before 6.6.3 and 7.x before 7.0.2 stores Sensitive Information in Cleartext. The issue occurs when the cluster manager forwards a HTTP request from the pluggable UI (query workbench etc) to the specific service. In the backtrace, the Basic Auth Header included in the HTTP request, has the "@" user credentials of the node processing the UI request.

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://docs.couchbase.com/server/current/release-notes/relnotes.html	Release Notes Vendor Advisory
https://www.couchbase.com/alerts	Vendor Advisory
https://docs.couchbase.com/server/current/release-notes/relnotes.html	Release Notes Vendor Advisory
https://www.couchbase.com/alerts	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:couchbase:couchbase_server::::::::
	cpe:2.3:a:couchbase:couchbase_server::::::::
	cpe:2.3:a:couchbase:couchbase_server::::::::
	cpe:2.3:a:couchbase:couchbase_server:7.0.0:-::::::
	cpe:2.3:a:couchbase:couchbase_server:7.0.1:::::::*

History

21 Nov 2024, 06:28

Type	Values Removed	Values Added
References	~~() https://docs.couchbase.com/server/current/release-notes/relnotes.html - Release Notes, Vendor Advisory~~	() https://docs.couchbase.com/server/current/release-notes/relnotes.html - Release Notes, Vendor Advisory
References	~~() https://www.couchbase.com/alerts - Vendor Advisory~~	() https://www.couchbase.com/alerts - Vendor Advisory

Information

Published : 2021-11-02 12:15

Updated : 2024-11-21 06:28

NVD link : CVE-2021-42763

Mitre link : CVE-2021-42763

CVE.ORG link : CVE-2021-42763

JSON object : View

Products Affected

couchbase

couchbase_server

CWE

CWE-312

Cleartext Storage of Sensitive Information

{"id": "CVE-2021-42763", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2021-11-02T12:15:07.837", "references": [{"url": "https://docs.couchbase.com/server/current/release-notes/relnotes.html", "tags": ["Release Notes", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.couchbase.com/alerts", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://docs.couchbase.com/server/current/release-notes/relnotes.html", "tags": ["Release Notes", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.couchbase.com/alerts", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-312"}]}], "descriptions": [{"lang": "en", "value": "Couchbase Server before 6.6.3 and 7.x before 7.0.2 stores Sensitive Information in Cleartext. The issue occurs when the cluster manager forwards a HTTP request from the pluggable UI (query workbench etc) to the specific service. In the backtrace, the Basic Auth Header included in the HTTP request, has the \"@\" user credentials of the node processing the UI request."}, {"lang": "es", "value": "Couchbase Server versiones anteriores a 6.6.3 y 7.x anteriores a 7.0.2, almacena informaci\u00f3n confidencial en texto sin cifrar. El problema se produce cuando el administrador de cl\u00fasteres reenv\u00eda una petici\u00f3n HTTP desde la UI pluggable (query workbench, etc.) al servicio espec\u00edfico. En el backtrace, el Basic Auth Header incluido en la petici\u00f3n HTTP, presenta las credenciales de usuario \"@\" del nodo que procesa la petici\u00f3n de UI"}], "lastModified": "2024-11-21T06:28:07.490", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:couchbase:couchbase_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "822D5705-403C-42B6-A7F4-F1B96DCDA2F6", "versionEndExcluding": "4.6.0"}, {"criteria": "cpe:2.3:a:couchbase:couchbase_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3178055C-9670-4D79-932A-07F139F5F922", "versionEndExcluding": "6.1.0", "versionStartIncluding": "5.0.0"}, {"criteria": "cpe:2.3:a:couchbase:couchbase_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7C23D79-2B15-45A5-B5FB-DB0354A108D4", "versionEndIncluding": "6.6.2", "versionStartIncluding": "6.5.0"}, {"criteria": "cpe:2.3:a:couchbase:couchbase_server:7.0.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "467A5F09-0E97-4BA8-933A-14F819D127A7"}, {"criteria": "cpe:2.3:a:couchbase:couchbase_server:7.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DDBFEB5B-7BF8-456B-84A2-8A8656470F6A"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}