CVE-2020-9041

In Couchbase Server 6.0.3 and Couchbase Sync Gateway through 2.7.0, the Cluster management, views, query, and full-text search endpoints are vulnerable to the Slowloris denial-of-service attack because they don't more aggressively terminate slow connections.
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:couchbase:couchbase_server:6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:couchbase:sync_gateway:*:*:*:*:*:*:*:*

Information

Published : 2020-06-08 09:15

Updated : 2020-06-11 11:02


NVD link : CVE-2020-9041

Mitre link : CVE-2020-9041


JSON object : View

CWE
CWE-404

Improper Resource Shutdown or Release

Advertisement

dedicated server usa

Products Affected

couchbase

  • sync_gateway
  • couchbase_server