Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2020/12/02 12:0 a.m.18 views

MongoDB 3.6 < 3.6.19, 4.0 < 4.0.20, 4.2 < 4.2.9 DoS Vulnerability - Linux

MongoDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mongodb:mongodb"; if...

7.5CVSS7.3AI score0.0166EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/11/23 10:13 p.m.23 views

CVE-2020-7925

Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticated attacker to use a specially crafted request to cause a denial of service. This issue affects MongoDB Server v4.4 versions prior to 4.4.0-rc12; MongoDB Server v4.2 version...

7.5CVSS7.4AI score0.0166EPSS
Exploits0References3
NVD
NVD
added 2020/11/23 3:15 p.m.15 views

CVE-2020-7925

Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticated attacker to use a specially crafted request to cause a denial of service. This issue affects MongoDB Server v4.4 versions prior to 4.4.0-rc12; MongoDB Server v4.2 version...

7.5CVSS7.4AI score0.0166EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/11/23 3:15 p.m.21 views

CVE-2020-7925

Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticated attacker to use a specially crafted request to cause a denial of service. This issue affects MongoDB Server v4.4 versions prior to 4.4.0-rc12; MongoDB Server v4.2 version...

7.5CVSS7.1AI score0.0166EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/11/23 2:50 p.m.23 views

CVE-2020-7925 Denial of Service when processing malformed Role names

Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticated attacker to use a specially crafted request to cause a denial of service. This issue affects MongoDB Server v4.4 versions prior to 4.4.0-rc12; MongoDB Server v4.2 version...

7.5CVSS7.4AI score0.0166EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2020/11/23 2:50 p.m.26 views

CVE-2020-7925

Removed by vendor...

7.5CVSS7.5AI score0.0166EPSS
Exploits0
CVE
CVE
added 2020/11/23 2:50 p.m.105 views

CVE-2020-7925

Mode C: CVE-2020-7925 is a MongoDB Denial of Service due to incorrect validation of user input in the role name parser. The vulnerability allows an unauthenticated attacker to send a specially crafted request to cause a DoS. Affected are MongoDB Server v4.4 before 4.4.0-rc12 and v4.2 before 4.2.9...

7.5CVSS7.3AI score0.0166EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder