CVE-2013-4650

Опубликовано: 04 июл. 2013

Источник: debian

Описание

MongoDB 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allows remote authenticated users to obtain internal system privileges by leveraging a username of __system in an arbitrary database.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
mongodb	fixed	1:2.4.5-1		package
mongodb	not-affected		squeeze	package
mongodb	not-affected		wheezy	package

Связанные уязвимости

CVE-2013-4650

ubuntu

больше 12 лет назад

MongoDB 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allows remote authenticated users to obtain internal system privileges by leveraging a username of __system in an arbitrary database.

CVE-2013-4650

nvd

больше 12 лет назад

MongoDB 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allows remote authenticated users to obtain internal system privileges by leveraging a username of __system in an arbitrary database.

GHSA-8q7v-784h-hv7q

github

больше 3 лет назад

MongoDB 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allows remote authenticated users to obtain internal system privileges by leveraging a username of __system in an arbitrary database.