6 matches found
Security Bulletin: A security vulnerability in MongoDB affects IBM Cloud Automation Manager.
Summary A security vulnerability in MongoDB affects IBM Cloud Automation Manager. Vulnerability Details CVEID: CVE-2020-7928 DESCRIPTION: MongoDB Server could allow a remote authenticated attacker to obtain sensitive information. By issuing a specially crafted query that violates an invariant in...
CVE-2020-7928
A user authorized to perform database queries may trigger a read overrun and access arbitrary memory by issuing specially crafted queries. This issue affects MongoDB Server v4.4 versions prior to 4.4.1; MongoDB Server v4.2 versions prior to 4.2.9; MongoDB Server v4.0 versions prior to 4.0.20 and...
CVE-2020-7928
A user authorized to perform database queries may trigger a read overrun and access arbitrary memory by issuing specially crafted queries. This issue affects MongoDB Server v4.4 versions prior to 4.4.1; MongoDB Server v4.2 versions prior to 4.2.9; MongoDB Server v4.0 versions prior to 4.0.20 and...
CVE-2020-7928
CVE-2020-7928 affects MongoDB Server across multiple branches: v4.4 prior to 4.4.1, v4.2 prior to 4.2.9, v4.0 prior to 4.0.20, and v3.6 prior to 3.6.20. The issue is a read overrun triggered by specially crafted queries, allowing a user authorized to perform database queries to access arbitrary m...
CVE-2020-7928 Improper neutralization of null byte leads to read overrun
A user authorized to perform database queries may trigger a read overrun and access arbitrary memory by issuing specially crafted queries. This issue affects MongoDB Server v4.4 versions prior to 4.4.1; MongoDB Server v4.2 versions prior to 4.2.9; MongoDB Server v4.0 versions prior to 4.0.20 and...
CVE-2020-7928
Removed by vendor...