Lucene search
RootSSV:60914HistoryJul 26, 2013 - 12:00 a.m.
MongoDB权限提升漏洞(CVE-2013-4650)
2013-07-2600:00:00
Root
www.seebug.org
26
0.002 Low
EPSS
Percentile
60.6%
CVE ID: CVE-2013-4650
MongoDB是一个高性能,开源,无模式的文档型数据库,是当前NoSql数据库中比较热门的一种
MongoDB处理权限检查存在一个安全漏洞,允许借助任意数据库中的_system用户名来获得内部系统权限
0
MongoDB 2.4.0-2.4.4
MongoDB 2.5.0
厂商解决方案
MongoDB 2.4.5或2.5.1已经修复此漏洞,建议用户下载更新:
http://www.mongodb.org
Related
prion
prion
Code injection
2013-07-04 14:33:00
cve
cve
CVE-2013-4650
2013-07-04 14:33:00
debiancve
debiancve
CVE-2013-4650
2013-07-04 14:33:00
ubuntucve
ubuntucve
CVE-2013-4650
2013-07-04 00:00:00
seebug
seebug
MongoDB 2.5.x/2.4.x 权限提升漏洞
2013-07-10 00:00:00
nessus
nessus
MongoDB < 2.4.5 / 2.5.1 Multiple Vulnerabilities
2013-07-11 00:00:00
kitploit
kitploit
mongoaudit - A Powerful MongoDB Auditing and Pentesting Tool
2017-02-22 14:04:00
n0where
n0where
MongoDB Security Audit: mongoaudit
2017-02-16 06:05:56