Lucene search
+L

32 matches found

Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.6 views

PT-2026-7420

Name of the Vulnerable Software and Affected Versions MongoDB affected versions not specified Description Inserting specific large documents into a replica set may cause secondary nodes to fail to retrieve the oplog from the primary node. This can halt replication within the replica set,...

7.5CVSS5.4AI score0.00243EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2021-7750

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.01037EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2021/12/22 5:54 p.m.30 views

CVE-2021-20330

A denial of service attack was found in MongoDB. An attacker with basic CRUD permissions on a replicated collection can run the applyOps command with specially malformed oplog entries, resulting in a potential denial of service on secondaries...

6.5CVSS3.1AI score0.01037EPSS
Exploits0References4
CNVD
CNVD
added 2021/12/19 12:0 a.m.26 views

MongoDB Server Denial of Service Vulnerability (CNVD-2021-101988)

Mongodb Server is an open source NoSQL database from Mongodb, Inc. The database provides collection-oriented storage, dynamic query, data replication and automatic failover, etc. A denial-of-service vulnerability exists in MongoDB Server, which can be exploited by an attacker with basic CRUD...

6.5CVSS2.9AI score0.01037EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/12/15 1:15 p.m.33 views

CVE-2021-20330

An attacker with basic CRUD permissions on a replicated collection can run the applyOps command with specially malformed oplog entries, resulting in a potential denial of service on secondaries. This issue affects MongoDB Server v4.0 versions prior to 4.0.27; MongoDB Server v4.2 versions prior to...

6.5CVSS6.6AI score0.01037EPSS
Exploits0References2
OSV
OSV
added 2021/12/15 1:15 p.m.3 views

UBUNTU-CVE-2021-20330

An attacker with basic CRUD permissions on a replicated collection can run the applyOps command with specially malformed oplog entries, resulting in a potential denial of service on secondaries. This issue affects MongoDB Server v4.0 versions prior to 4.0.27; MongoDB Server v4.2 versions prior to...

6.5CVSS5.8AI score0.01037EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/12/15 12:30 p.m.32 views

CVE-2021-20330 Specific replication command with malformed oplog entries can crash secondaries

An attacker with basic CRUD permissions on a replicated collection can run the applyOps command with specially malformed oplog entries, resulting in a potential denial of service on secondaries. This issue affects MongoDB Server v4.0 versions prior to 4.0.27; MongoDB Server v4.2 versions prior to...

6.5CVSS6.6AI score0.01037EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/12/15 12:0 a.m.6 views

Mongodb Server 输入验证错误漏洞

Mongodb Server is an open source NoSQL database from Mongodb, Inc. The database provides collection-oriented storage, dynamic query, data replication and automatic failover, etc. A denial-of-service vulnerability exists in MongoDB Server, which can be exploited by an attacker with basic CRUD...

6.5CVSS5.7AI score0.01037EPSS
Exploits0References3
MongoDB
MongoDB
added 2021/12/15 12:0 a.m.43 views

Specific replication command with malformed oplog entries can crash secondaries

An attacker with basic CRUD permissions on a replicated collection can run the applyOps command with specially malformed oplog entries, resulting in a potential denial of service on secondaries. This issue affects MongoDB Server v4.0 versions prior to 4.0.25; MongoDB Server v4.2 versions prior to...

6.5CVSS4.8AI score0.01037EPSS
Exploits0References1Affected Software1
Hacker One
Hacker One
added 2021/11/08 1:42 p.m.18 views

Rocket.Chat: Unintended information disclosure in the Hubot Log files

Dear Rocket.Chat Team While inspecting our logs I noticed, that the OAuth Tokens are leaked in plaintext in the logs. I wanted to draw your attention to this, as this is a security vulnerability. See the attached Screenshot for a redacted log excerpt. In my opinion, the best approach here would b...

5CVSS1.1AI score0.00553EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/04/13 3:22 p.m.3 views

@concepto/eb (>=1.1.7 <=1.1.95), @concepto/nuxt (=1.9.427) +11 more potentially affected by CVE-2019-10804 via serial-number (>=0.3.0 <=1.3.0)

serial-number NPM version =0.3.0, =1.1.7, =0.0.1, =1.9.35, =1.1.0, =1.1.1, =0.2.1, =0.1.4, =0.1.1, =0.1.24, =2.5.0, =3.1.1 Source cves: CVE-2019-10804 Source advisory: OSV:GHSA-3FW4-4H3M-892H...

9.8CVSS7.2AI score0.02836EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/02/28 11:56 a.m.4 views

@concepto/eb (>=1.1.7 <=1.1.95), @concepto/nuxt (=1.9.427) +11 more potentially affected by CVE-2019-10804 via serial-number (>=0.3.0 <=1.3.0)

serial-number NPM version =0.3.0, =1.1.7, =0.0.1, =1.9.35, =1.1.0, =1.1.1, =0.2.1, =0.1.4, =0.1.1, =0.1.24, =2.5.0, =3.1.1 Source cves: CVE-2019-10804 Source advisory: SNYK:JS-SERIALNUMBER-559010...

9.8CVSS7.2AI score0.02836EPSS
Exploits1
Rows per page
Query Builder