Описание
A specially crafted aggregation query with $lookup by an authenticated user with write privileges can cause a double-free or use-after-free memory issue in the slot-based execution (SBE) engine when an in-memory hash table is spilled to disk.
EPSS
Процентиль: 20%
0.00064
Низкий
6.4 Medium
CVSS3
Дефекты
CWE-415
Связанные уязвимости
CVSS3: 6.4
ubuntu
11 дней назад
(A specially crafted aggregation query with $lookup by an authenticated ...)
CVSS3: 6.4
debian
12 дней назад
A specially crafted aggregation query with $lookup by an authenticated ...
CVSS3: 6.4
github
12 дней назад
A specially crafted aggregation query with $lookup by an authenticated user with write privileges can cause a double-free or use-after-free memory issue in the slot-based execution (SBE) engine when an in-memory hash table is spilled to disk.
EPSS
Процентиль: 20%
0.00064
Низкий
6.4 Medium
CVSS3
Дефекты
CWE-415