Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2020-7925HistoryNov 23, 2020 - 3:15 p.m.
CVE-2020-7925
2020-11-2315:15:00
Debian Security Bug Tracker
security-tracker.debian.org
12
cve-2020-7925
user input validation
role name parser
uninitialized memory
denial of service
unauthenticated attacker
specially crafted request
mongodb inc.
mongodb server
v4.4
v4.2
unix
EPSS
0.001
Percentile
47.8%
Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticated attacker to use a specially crafted request to cause a denial of service. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.0-rc12; v4.2 versions prior to 4.2.9.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | mongodb | < 1:3.2.11-2+deb9u1 | mongodb_1:3.2.11-2+deb9u1_all.deb |
Related
redhatcve
redhatcve
CVE-2020-7925
2020-11-23 22:13:37
ubuntucve
ubuntucve
CVE-2020-7925
2020-11-23 00:00:00
openvas
openvas
MongoDB 3.6 < 3.6.19, 4.0 < 4.0.20, 4.2 < 4.2.9 DoS Vulnerability - Windows
2020-12-02 00:00:00
MongoDB 3.6 < 3.6.19, 4.0 < 4.0.20, 4.2 < 4.2.9 DoS Vulnerability - Linux
2020-12-02 00:00:00
cvelist
cvelist
CVE-2020-7925 Denial of Service when processing malformed Role names
2020-11-23 14:50:12
cve
cve
CVE-2020-7925
2020-11-23 15:15:11
nvd
nvd
CVE-2020-7925
2020-11-23 15:15:11
prion
prion
Input validation
2020-11-23 15:15:00
osv
osv
CVE-2020-7925
2020-11-23 15:15:11
BIT-mongodb-2020-7925
2024-03-06 10:58:54
mongodb
mongodb
Denial of Service when processing malformed Role names
2020-11-30 14:00:00
ibm
ibm
nessus
nessus
Dell Wyse Management Suite < 3.2 Multiple Vulnerabilities (DSA-2021-070)
2021-04-07 00:00:00