High severity7.5NVD Advisory· Published Nov 2, 2021· Updated Jun 17, 2026
CVE-2021-37842
CVE-2021-37842
Description
metakv in Couchbase Server 7.0.0 uses Cleartext for Storage of Sensitive Information. Remote Cluster XDCR credentials can get leaked in debug logs. Config key tombstone purging was added in Couchbase Server 7.0.0. This issue happens when a config key, which is being logged, has a tombstone purger time-stamp attached to it.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Couchbase/Serverdescription
- Range: =7.0.0
Patches
Vulnerability mechanics
References
2- docs.couchbase.com/server/current/release-notes/relnotes.htmlnvdRelease NotesVendor Advisory
- www.couchbase.com/alertsnvdVendor Advisory
News mentions
0No linked articles in our index yet.