7 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-32050
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Some MongoDB Drivers may erroneously publish events containing authentication-related data to a command listener configured by an application. The published...
@a-la-fois/api (>=0.0.25 <=0.0.39), @a-la-fois/doc-client (>=0.0.1 <=0.0.39) +173 more potentially affected by CVE-2021-32050 via mongodb (>=5.0.0 <=5.7.0)
mongodb NPM version =5.0.0, =0.0.25, =0.0.1, =0.0.25, =0.0.1, =0.0.25, =0.3.1, =0.8.2, =3.12.0, =1.0.0, =2.0.0-beta.7, =1.0.1, =0.0.0, =1.0.2, =1.3.4 and more Source cves: CVE-2021-32050 Source advisory: OSV:GHSA-VXVM-QWW3-2FH7...
@bitskyai/retailer-sdk (>=0.1.1 <=0.3.2), @codious/core (>=1.0.0 <=1.0.5) +71 more potentially affected by CVE-2021-32050 via mongodb (>=3.6.0 <=3.6.1)
mongodb NPM version =3.6.0, =0.1.1, =1.0.0, =2.0.0, =1.0.0, =0.15.1, =4.0.1-alpha-0bd7fa5.0, =4.3.0-fast-roles2, =0.0.1, =0.1.0, =0.0.32, =0.0.3, =1.0.0, =1.81.0 and more Source cves: CVE-2021-32050 Source advisory: OSV:GHSA-VXVM-QWW3-2FH7...
@a-la-fois/doc-handler (>=0.0.6 <=0.0.16), @a-la-fois/models (>=0.0.3 <=0.0.16) +375 more potentially affected by CVE-2021-32050 via mongodb (>=4.0.1 <=4.16.0)
mongodb NPM version =4.0.1, =0.0.6, =0.0.3, =0.1.66, =0.5.134, =3.9.0, =0.0.1, =2.0.0-beta, =0.1.0, =2.0.0-beta.3, =1.4.5, =1.1.217, =0.0.1, =0.0.1, =0.1.0, =3.0.14 and more Source cves: CVE-2021-32050 Source advisory: OSV:GHSA-VXVM-QWW3-2FH7...
CVE-2021-32050
Some MongoDB Drivers may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when specific authentication-related commands are executed. Without due care, an application may...
UBUNTU-CVE-2021-32050
Some MongoDB Drivers may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when specific authentication-related commands are executed. Without due care, an application may...
CVE-2021-32050
CVE-2021-32050 concerns MongoDB drivers that may publish authentication-related data to a configurable command listener, risking exposure of sensitive information when specific authentication commands execute. The issue affects multiple drivers to varying versions (e.g., C Driver <1.17.7, PHP ...