In the community version of couchBase7.1.1, the following components have security vulnerabilities:
angular/core(8.2.14)==>11.0.5+
d3-color(1.4.1)==>3.0.0
angular(1.8.0)==>1.8.3
codemirror(5.56.0)==>5.58.2+
lodash(3.3.0)==>4.17.21
shpinx==>3.04+
When will the upgrade be complete?
Please see Enterprise-Level Security | Couchbase
We wanted to kindly remind you about the importance of maintaining security when discussing any potential vulnerabilities related to our system.
As a responsible and security-conscious organization, we take the protection of our systems and data very seriously. While we appreciate your vigilance in identifying and reporting any potential security vulnerabilities, we kindly request that you refrain from posting any messages or disclosing such information in public forums or social media.
Instead, we urge you to follow our established security reporting procedures, which include emailing us privately at security@couchbase.com with any details of the suspected vulnerability. This allows us to promptly investigate and take appropriate measures to address any potential security concerns, while also maintaining the confidentiality of the information.
By adhering to these established security reporting procedures, we can work together to ensure the ongoing security and integrity of our system. We appreciate your cooperation in this matter and thank you for your continued support in keeping our system secure.
Thank you,
Ian McCloy