Lucene search
GoogleOSV:CVE-2019-2392HistoryNov 23, 2020 - 4:15 p.m.
CVE-2019-2392
2020-11-2316:15:12
Google
osv.dev
2
mongodb server
denial of service
cve-2019-2392
database queries
$mod operator
EPSS
0.001
Percentile
29.8%
A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use the $mod operator to overflow negative values. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.1; v4.2 versions prior to 4.2.9; v4.0 versions prior to 4.0.20; v3.6 versions prior to 3.6.20.
References
Related
cvelist
cvelist
CVE-2019-2392 $mod can result in undefined behavior
2020-11-23 15:25:14
redhatcve
redhatcve
CVE-2019-2392
2020-11-23 22:14:27
prion
prion
Input validation
2020-11-23 16:15:00
openvas
openvas
ubuntucve
ubuntucve
CVE-2019-2392
2020-11-23 00:00:00
cve
cve
CVE-2019-2392
2020-11-23 16:15:12
mongodb
mongodb
$mod can result in UB
2020-11-30 14:00:00
debiancve
debiancve
CVE-2019-2392
2020-11-23 16:15:00
nvd
nvd
CVE-2019-2392
2020-11-23 16:15:12
nessus
nessus
Dell Wyse Management Suite < 3.2 Multiple Vulnerabilities (DSA-2021-070)
2021-04-07 00:00:00