Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-1409

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely ...

7.5CVSS6.9AI score0.00367EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/22 4:6 p.m.30 views

Security Bulletin: Vulnerabilities in MongoDB might affect IBM Storage Copy Data Management

Summary IBM Storage Copy Data Management can be affected by vulnerabilities in MongoDB. A remote authenticated attacker could exploit these vulnerabilities to cause the application to crash, to cause a resource depletion or generate high lock contention and result in a denial of service condition...

7.5CVSS7.5AI score0.0197EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2023/08/24 12:0 a.m.25 views

MongoDB Improper Authorization Vulnerability (SERVER-73662) - Windows

MongoDB is prone to an improper authorization vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mongodb:mongodb"; if...

7.5CVSS6.9AI score0.00367EPSS
Exploits0References1
OSV
OSV
added 2023/08/23 4:15 p.m.23 views

CVE-2023-1409

If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely in other platforms e.g. Linux, it is possible that client certificate validation may not be in effect, potentially allowing client to...

7.5CVSS5.9AI score
Exploits0References3
NVD
NVD
added 2023/08/23 4:15 p.m.18 views

CVE-2023-1409

If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely in other platforms e.g. Linux, it is possible that client certificate validation may not be in effect, potentially allowing client to...

7.5CVSS6.1AI score0.00367EPSS
Exploits0References3
OSV
OSV
added 2023/08/23 4:15 p.m.3 views

UBUNTU-CVE-2023-1409

If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely in other platforms e.g. Linux, it is possible that client certificate validation may not be in effect, potentially allowing client to...

7.5CVSS6.9AI score0.00367EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/08/23 4:15 p.m.35 views

CVE-2023-1409

If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely in other platforms e.g. Linux, it is possible that client certificate validation may not be in effect, potentially allowing client to...

7.5CVSS6.8AI score0.00367EPSS
Exploits0References3
CVE
CVE
added 2023/08/23 3:21 p.m.205 views

CVE-2023-1409

CVE-2023-1409 concerns a certificate validation issue in the MongoDB Server when TLS is used on Windows or macOS with certain known-good Linux-like TLS configurations. The vulnerability could allow a client to establish a TLS connection to the server while presenting any certificate. Affected ver...

7.5CVSS5.9AI score0.00367EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder