Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2016/12/07 12:0 a.m.21 views

Fedora Update for mongodb FEDORA-2016-9a8e2bbc04

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.00385EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/10/07 12:0 a.m.48 views

Fedora 24 : mongodb (2016-89060100d7)

Security fix for CVE-2016-6494. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...

5.5CVSS6.2AI score0.00385EPSS
Exploits0References2
NVD
NVD
added 2016/10/03 6:59 p.m.13 views

CVE-2016-6494

The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files...

5.5CVSS5.1AI score0.00385EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2016/10/03 6:59 p.m.32 views

CVE-2016-6494

The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files...

5.5CVSS6.5AI score0.00385EPSS
Exploits0References3
CVE
CVE
added 2016/10/03 6:0 p.m.105 views

CVE-2016-6494

CVE-2016-6494 (MongoDB): The MongoDB client stores .dbshell history files with world‑readable permissions, enabling a local attacker to read history and potentially obtain sensitive information. This is a local information‑exposure issue. CVSS shows low base score (2.1/3.0) with local access requ...

5.5CVSS4.9AI score0.00385EPSS
Exploits0References8Affected Software1
Debian
Debian
added 2016/08/09 8:18 p.m.21 views

[SECURITY] [DLA 588-2] mongodb security update

Package : mongodb Version : 2.0.6-1+deb7u1 CVE ID : CVE-2016-6494 Debian Bug : 832908, 833087 This is an update of DLA-558-1. The previous build had revision number that was considered lower than the one in wheezy and was therefore not installed at upgrade. The text for DLA-558-1 is included here...

5.5CVSS5.6AI score0.00385EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/08/09 12:0 a.m.30 views

Debian DLA-588-2 : mongodb security update

This is an update of DLA-588-1. The previous build had revision number that was considered lower than the one in wheezy and was therefore not installed at upgrade. The text for DLA-588-1 is included here for reference with some improvement. Two security related problems have been found in the...

5.5CVSS6.4AI score0.00385EPSS
Exploits0References3
Debian
Debian
added 2016/08/08 9:52 a.m.24 views

[SECURITY] [DLA 588-1] mongodb security update

Package : mongodb Version : 2.0.6-1+deb7u1 CVE ID : CVE-2016-6494 Debian Bug : 832908, 833087 Two security related problems have been found in the mongodb package, related to logging. CVE-2016-6494 World-readable .dbshell history file TEMP-0833087-C5410D Bruteforcable challenge responses in...

5.5CVSS5.6AI score0.00385EPSS
Exploits0
OSV
OSV
added 2016/08/08 12:0 a.m.21 views

DLA-588-1 mongodb - security update

Bulletin has no description...

5.5CVSS5.6AI score0.00385EPSS
Exploits0
Rows per page
Query Builder