Lucene search
MongodbCVELIST:CVE-2020-7926HistoryNov 23, 2020 - 3:05 p.m.
CVE-2020-7926 Specific query can cause a DoS against MongoDB Server
2020-11-2315:05:15
CWE-755
mongodb
www.cve.org
4
cve-2020-7926
dos
mongodb
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
29.8%
A user authorized to perform database queries may cause denial of service by issuing a specially crafted query which violates an invariant in the server selection subsystem. This issue affects MongoDB Server v4.4 versions prior to 4.4.1. Versions before 4.4 are not affected.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "MongoDB Server",
"vendor": "MongoDB Inc.",
"versions": [
{
"lessThan": "4.4.1",
"status": "affected",
"version": "4.4",
"versionType": "custom"
}
]
}
]References
Related
mongodb
mongodb
Specific query can cause a DoS against MongoDB Server
2020-11-30 14:00:00
prion
prion
Code injection
2020-11-23 15:15:00
openvas
openvas
MongoDB 4.4.0 DoS Vulnerability - Windows
2020-12-02 00:00:00
MongoDB 4.4.0 DoS Vulnerability - Linux
2020-12-02 00:00:00
debiancve
debiancve
CVE-2020-7926
2020-11-23 15:15:00
cve
cve
CVE-2020-7926
2020-11-23 15:15:11
redhatcve
redhatcve
CVE-2020-7926
2020-11-23 22:11:39
nvd
nvd
CVE-2020-7926
2020-11-23 15:15:11
ubuntucve
ubuntucve
CVE-2020-7926
2020-11-23 00:00:00
osv
osv
BIT-mongodb-2020-7926
2024-03-06 10:58:44
CVE-2020-7926
2020-11-23 15:15:11
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
29.8%
Related for CVELIST:CVE-2020-7926