Описание
MongoDB on Red Hat Satellite 6 allows local users to bypass authentication by logging in with an empty password and delete information which can cause a Denial of Service.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Satellite 6 | mongodb | Will not fix |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-287
https://bugzilla.redhat.com/show_bug.cgi?id=13017036: mongodb accessible by local users without authentication resulting in Denial of Service
EPSS
Процентиль: 15%
0.00047
Низкий
2.1 Low
CVSS2
Связанные уязвимости
CVSS3: 5.5
nvd
больше 8 лет назад
MongoDB on Red Hat Satellite 6 allows local users to bypass authentication by logging in with an empty password and delete information which can cause a Denial of Service.
CVSS3: 5.5
github
больше 3 лет назад
MongoDB on Red Hat Satellite 6 allows local users to bypass authentication by logging in with an empty password and delete information which can cause a Denial of Service.
EPSS
Процентиль: 15%
0.00047
Низкий
2.1 Low
CVSS2