Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2024/07/02 12:0 a.m.25 views

MongoDB Missing Authorization Check Vulnerability (SERVER-79327) - Linux

MongoDB is prone to a missing authorization check vulnerability in refine collection shard key. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

6.5CVSS8.3AI score0.00376EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/07/02 12:0 a.m.17 views

MongoDB Missing Authorization Check Vulnerability (SERVER-79327) - Windows

MongoDB is prone to a missing authorization check vulnerability in refine collection shard key. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

6.5CVSS8.3AI score0.00376EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/07/01 3:15 p.m.21 views

CVE-2024-6375

A command for refining a collection shard key is missing an authorization check. This may cause the command to run directly on a shard, leading to either degradation of query performance, or to revealing chunk boundaries through timing side channels. This affects MongoDB Server v5.0 versions, pri...

6.5CVSS7.2AI score0.00376EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/07/01 2:40 p.m.28 views

CVE-2024-6375 Missing authorization check may lead to shard key refinement

A command for refining a collection shard key is missing an authorization check. This may cause the command to run directly on a shard, leading to either degradation of query performance, or to revealing chunk boundaries through timing side channels. This affects MongoDB Server v5.0 versions, pri...

5.4CVSS0.00376EPSS
Exploits0References1
OSV
OSV
added 2024/07/01 2:40 p.m.16 views

CVE-2024-6375 Missing authorization check may lead to shard key refinement

A command for refining a collection shard key is missing an authorization check. This may cause the command to run directly on a shard, leading to either degradation of query performance, or to revealing chunk boundaries through timing side channels. This affects MongoDB Server v5.0 versions, pri...

5.4CVSS6.6AI score0.00376EPSS
Exploits0References3
Rows per page
Query Builder