Lucene search
GoogleOSV:CVE-2018-20802HistoryNov 23, 2020 - 4:15 p.m.
CVE-2018-20802
2020-11-2316:15:12
Google
osv.dev
5
mongodb
denial of service
queryplanner
A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries with compound indexes affecting QueryPlanner. This issue affects MongoDB Server v3.6 versions prior to 3.6.9 and MongoDB Server v4.0 versions prior to 4.0.3.
References
Related
nvd
nvd
CVE-2018-20802
2020-11-23 16:15:12
mongodb
mongodb
Post-auth queries on compound index may crash mongod
2020-11-30 14:00:00
openvas
openvas
MongoDB 3.6 < 3.6.9, 4.0 < 4.0.3 DoS Vulnerability - Windows
2020-12-02 00:00:00
MongoDB 3.6 < 3.6.9, 4.0 < 4.0.3 DoS Vulnerability - Linux
2020-12-02 00:00:00
debiancve
debiancve
CVE-2018-20802
2020-11-23 16:15:00
cve
cve
CVE-2018-20802
2020-11-23 16:15:12
prion
prion
Design/Logic Flaw
2020-11-23 16:15:00
redhatcve
redhatcve
CVE-2018-20802
2020-11-23 20:51:38
ubuntucve
ubuntucve
CVE-2018-20802
2020-11-23 00:00:00
cvelist
cvelist
CVE-2018-20802 Post-auth queries on compound index may crash mongod
2020-11-23 15:15:18