Lucene search

K
osvGoogleOSV:CVE-2022-24272
HistoryApr 21, 2022 - 11:15 a.m.

CVE-2022-24272

2022-04-2111:15:08
Google
osv.dev
4

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.1%

An authenticated user may trigger an invariant assertion during command dispatch due to incorrect validation on the $external database. This may result in mongod denial of service or server crash. This issue affects: MongoDB Inc. MongoDB Server v5.0 versions, prior to and including v5.0.6.

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.1%