8 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-1409
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely ...
Security Bulletin: Vulnerabilities in MongoDB might affect IBM Storage Copy Data Management
Summary IBM Storage Copy Data Management can be affected by vulnerabilities in MongoDB. A remote authenticated attacker could exploit these vulnerabilities to cause the application to crash, to cause a resource depletion or generate high lock contention and result in a denial of service condition...
MongoDB Improper Authorization Vulnerability (SERVER-73662) - Windows
MongoDB is prone to an improper authorization vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mongodb:mongodb"; if...
CVE-2023-1409
If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely in other platforms e.g. Linux, it is possible that client certificate validation may not be in effect, potentially allowing client to...
CVE-2023-1409
If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely in other platforms e.g. Linux, it is possible that client certificate validation may not be in effect, potentially allowing client to...
UBUNTU-CVE-2023-1409
If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely in other platforms e.g. Linux, it is possible that client certificate validation may not be in effect, potentially allowing client to...
CVE-2023-1409
If the MongoDB Server running on Windows or macOS is configured to use TLS with a specific set of configuration options that are already known to work securely in other platforms e.g. Linux, it is possible that client certificate validation may not be in effect, potentially allowing client to...
CVE-2023-1409
CVE-2023-1409 concerns a certificate validation issue in the MongoDB Server when TLS is used on Windows or macOS with certain known-good Linux-like TLS configurations. The vulnerability could allow a client to establish a TLS connection to the server while presenting any certificate. Affected ver...