PT-2018-13175 · Couchbase · Couchbase Server

Filip Palian

Published

2018-08-24

Updated

2022-06-14

CVE-2018-15728

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Couchbase Server versions 4.0.0 through 5.5.1

Description The issue allows authenticated users with the 'Full Admin' role to execute arbitrary Erlang code on the underlying operating system with the privileges of the user running Couchbase. This is possible due to the exposure of the "/diag/eval" endpoint, which is available by default on TCP/8091 and/or TCP/18091.

Recommendations For versions 4.0.0 through 5.5.1, update to version 5.5.2 or 6.0.0 to resolve the issue. As a temporary workaround, consider restricting access to the "/diag/eval" endpoint until a patch is applied.

Exploit

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2018-15728

Affected Products

Couchbase Server

PT-2018-13175 · Couchbase · Couchbase Server

CVE-2018-15728

Weakness Enumeration

Related Identifiers

Affected Products

References · 5