Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2022-24272
HistoryApr 21, 2022 - 11:15 a.m.

CVE-2022-24272

2022-04-2111:15:00
Debian Security Bug Tracker
security-tracker.debian.org
15

0.001 Low

EPSS

Percentile

40.1%

An authenticated user may trigger an invariant assertion during command dispatch due to incorrect validation on the $external database. This may result in mongod denial of service or server crash. This issue affects: MongoDB Inc. MongoDB Server v5.0 versions, prior to and including v5.0.6.

OSVersionArchitecturePackageVersionFilename
Debian9allmongodb<= 1:3.2.11-2+deb9u1mongodb_1:3.2.11-2+deb9u1_all.deb

0.001 Low

EPSS

Percentile

40.1%