cbcvebase.
CVE-2025-46619
published 2025-04-30

CVE-2025-46619: A security issue has been discovered in Couchbase Server before 7.6.4 and fixed in v.7.6.4 and v.7.2.7 for Windows that could allow unauthorized access to…

PriorityP345high7.6CVSS 3.1
AVNACLPRLUINSUCHILAL
EPSS
0.43%
34.5th percentile
A security issue has been discovered in Couchbase Server before 7.6.4 and fixed in v.7.6.4 and v.7.2.7 for Windows that could allow unauthorized access to sensitive files. Depending on the level of privileges, this vulnerability may grant access to files such as /etc/passwd or /etc/shadow.

Affected

2 ranges
VendorProductVersion rangeFixed in
couchbasecouchbase_server>= 2.0.0 < 7.2.77.2.7
couchbasecouchbase_server>= 7.6.0 < 7.6.47.6.4
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.