Cross site request forgery vulnerability in Couchbase ServerID: oval:org.secpod.oval:def:64158 | Date: (C)2020-07-10 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
The host is installed with Couchbase Server 6.0.0 and is prone to a cross site request forgery vulnerability. A flaw is present in the application, which fails to properly handle the credentials cached by a browser. Successful exploitation could allow attackers to perform a CSRF attack if an administrator has used their browser to check the results of a REST API request.
Platform: |
Microsoft Windows 10 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |