CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

8 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-2775

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00283EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 4:19 a.m.•1 views

SUSE CVE-2019-2390

An unprivileged user or program on Microsoft Windows which can create OpenSSL configuration files in a fixed location may cause utility programs shipped with MongoDB server to run attacker defined code as the user running the utility. This issue MongoDB Server v4.0 versions prior to 4.0.11; Mongo...

8.2CVSS7.2AI score0.00381EPSS

Exploits0References3

UbuntuCve•added 2021/04/12 5:15 p.m.•19 views

CVE-2020-7924

Usage of specific command line parameter in MongoDB Tools which was originally intended to just skip hostname checks, may result in MongoDB skipping all certificate validation. This may result in accepting invalid certificates.This issue affects: MongoDB Inc. MongoDB Database Tools 3.6 versions...

6.5CVSS6.6AI score0.00283EPSS

Exploits0References2

CVE•added 2021/04/12 4:25 p.m.•78 views

CVE-2020-7924

CVE-2020-7924 describes an improper certificate validation flaw in MongoDB Tools caused by using a command-line parameter that was intended to skip hostname checks but can cause all certificate validation to be bypassed. Affected are MongoDB Database Tools versions: 3.6.x after 3.6.5 and before 3...

6.5CVSS5.2AI score0.00283EPSS

Exploits0References1Affected Software2

Cvelist•added 2021/04/12 4:25 p.m.•13 views

CVE-2020-7924 Specific command line parameter might result in accepting invalid certificate

Usage of specific command line parameter in MongoDB Tools which was originally intended to just skip hostname checks, may result in MongoDB skipping all certificate validation. This may result in accepting invalid certificates.This issue affects: MongoDB Inc. MongoDB Database Tools 3.6 versions...

4.2CVSS6.4AI score0.00283EPSS

Exploits0References1

Debian CVE•added 2021/04/12 4:25 p.m.•20 views

CVE-2020-7924

Removed by vendor...

6.5CVSS6.5AI score0.00283EPSS

Vulnrichment•added 2021/04/12 4:25 p.m.•9 views

CVE-2020-7924 Specific command line parameter might result in accepting invalid certificate

Usage of specific command line parameter in MongoDB Tools which was originally intended to just skip hostname checks, may result in MongoDB skipping all certificate validation. This may result in accepting invalid certificates.This issue affects: MongoDB Inc. MongoDB Database Tools 3.6 versions...

4.2CVSS5.3AI score0.00283EPSS

Exploits0References1

MongoDB•added 2021/04/12 12:0 a.m.•40 views

Specific command line parameter might result in accepting invalid certificate

Usage of specific command line parameter in MongoDB Tools which was originally intended to just skip hostname checks, may result in MongoDB skipping all certificate validation. This may result in accepting invalid certificates.This issue affects: MongoDB Inc. MongoDB Database Tools 3.6 versions...

6.5CVSS2.4AI score0.00283EPSS

Exploits0References1Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by