Описание
The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6 | mongodb | Will not fix | ||
| Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7 | mongodb | Will not fix | ||
| Red Hat Enterprise Linux OpenStack Platform 6 (Juno) | mongodb | Will not fix | ||
| Red Hat Enterprise Linux OpenStack Platform 7 (Kilo) | mongodb | Will not fix | ||
| Red Hat Enterprise MRG 2 | mongodb | Will not fix | ||
| Red Hat OpenShift Enterprise 2 | mongodb | Will not fix | ||
| Red Hat OpenStack Platform 8 (Liberty) | mongodb | Will not fix | ||
| Red Hat Satellite 6 | mongodb | Will not fix | ||
| Red Hat Software Collections | mongodb24-mongodb | Will not fix | ||
| Red Hat Software Collections | rh-mongodb26-mongodb | Will not fix |
Показывать по
Дополнительная информация
Статус:
EPSS
4 Medium
CVSS3
2.1 Low
CVSS2
Связанные уязвимости
The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files.
The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files.
The client in MongoDB uses world-readable permissions on .dbshell hist ...
The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files.
EPSS
4 Medium
CVSS3
2.1 Low
CVSS2