CVE-2025-46619

A security issue has been discovered in Couchbase Server before 7.6.4 and fixed in v.7.6.4 and v.7.2.7 for Windows that could allow unauthorized access to sensitive files. Depending on the level of privileges, this vulnerability may grant access to files such as /etc/passwd or /etc/shadow.

Published: Apr 30, 2025
Updated: May 1, 2025
CVE: CVE-2025-46619
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
couchbase / couchbase_server	2.0.0	7.2.7
couchbase / couchbase_server	7.6.0	7.6.4

https://docs.couchbase.com/server/current/release-notes/relnotes.html
https://forums.couchbase.com/tags/security
https://www.couchbase.com/alerts/

Vulnerability Database

CVE-2025-46619