The host is installed with Couchbase Server 2.x through 6.6.6, 7.x through 7.0.5 and 7.1.0 through 7.1.2 and is prone to a sensitive information disclosure vulnerability. A flaw is present in the application, which fails to redacte field messages from the logged validation messages. Successful exploitation could allow attackers to obtain sensitive information.