Lucene search
K

4 matches found

OSV
OSV
added 2026/06/16 11:48 a.m.5 views

BIT-MONGODB-2026-9743 Aggregation sub-pipeline null dereference may allow DoS via crafted getMore

In MongoDB Server 8.0, an aggregation stage can leave its subPipeline field null during processing of certain pipelines. If a getMore is subsequently issued on the same cursor, the server may dereference this null sub-pipeline when reattaching to the operation context, accessing an invalid addres...

7.1CVSS5.4AI score0.00307EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.11 views

MongoDB Server 代码问题漏洞

MongoDB Server is an open-source NoSQL database developed by MongoDB, a US-based company. This database offers features such as collection-oriented storage, dynamic querying, data replication, and automatic failover. Version 8.0 of MongoDB Server contains a code vulnerability. This vulnerability...

7.1CVSS5.3AI score0.00307EPSS
Exploits0References1
Snyk
Snyk
added 2025/07/15 1:44 p.m.4 views

Numeric Truncation Error

Overview Affected versions of this package are vulnerable to Numeric Truncation Error in the aggregation process. An attacker can cause data corruption, unauthorized data modification, or application crashes by submitting specially crafted input that leads to the number of aggregate terms exceedi...

9.8CVSS6.7AI score0.73495EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2021/05/20 12:0 a.m.37 views

Juniper Junos OS DoS (JSA11125)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA11125 advisory. On Juniper Networks Junos OS platforms with link aggregation lag configured, executing any operation that fetches Aggregated Ethernet AE interface statistics, including but...

7.5CVSS7.4AI score0.00961EPSS
Exploits0References2
Rows per page
Query Builder