EUVD-2020-28859

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

User authorized to run queries can cause denial of service in MongoDB Server before specific versions.

Reporter	Title	Published	Views	Family All 30
Circl	CVE-2020-7929	1 Mar 202118:43	–	circl
CNNVD	MongoDB 安全漏洞	1 Mar 202100:00	–	cnnvd
CNVD	MongoDB Server Denial of Service Vulnerability (CNVD-2021-14786)	3 Mar 202100:00	–	cnvd
CVE	CVE-2020-7929	1 Mar 202116:05	–	cve
Cvelist	CVE-2020-7929 Specially crafted regex query can cause DoS	1 Mar 202116:05	–	cvelist
IBM Security Bulletins	Security Bulletin: Vulnerabilities in MongoDB, Node.js, Docker, and XStream affect IBM Spectrum Protect Plus	28 Jun 202120:25	–	ibm
Debian CVE	CVE-2020-7929	1 Mar 202116:05	–	debiancve
MongoDB	Specially crafted regex query can cause DoS	26 Feb 202100:00	–	mongodb
NVD	CVE-2020-7929	1 Mar 202116:15	–	nvd
OpenVAS	MongoDB DoS Vulnerability (SERVER-51083) - Linux	2 Mar 202100:00	–	openvas

[
  {
    "enisaIdVendor": [
      {
        "id": "b68356e7-d1de-3e66-b404-bd0d640ca7a9",
        "vendor": {
          "name": "MongoDB Inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "8a0837c1-35a6-3290-a882-fadcd1ba61ce",
        "product": {
          "name": "MongoDB Server"
        },
        "product_version": "3.6 <3.6.21"
      },
      {
        "id": "8ee29d97-833e-37ff-ab74-79aae2f17269",
        "product": {
          "name": "MongoDB Server"
        },
        "product_version": "4.0 <4.0.20"
      }
    ]
  }
]

Source	Link
jira	www.jira.mongodb.org/browse/SERVER-51083
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.3Medium risk

Vulners AI Score6.3

CVSS 3.16.5

CVSS 24

EPSS0.00441

SSVC