Описание
MongoDB 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allows remote authenticated users to obtain internal system privileges by leveraging a username of __system in an arbitrary database.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1:2.4.9-1ubuntu2 |
| esm-apps/xenial | not-affected | 1:2.4.9-1ubuntu2 |
| esm-infra-legacy/trusty | not-affected | 1:2.4.9-1ubuntu2 |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| quantal | ignored | end of life |
| raring | ignored | end of life |
| saucy | not-affected | 1:2.4.6-0ubuntu5 |
| trusty | not-affected | 1:2.4.9-1ubuntu2 |
Показывать по
6.5 Medium
CVSS2
Связанные уязвимости
MongoDB 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allows remote authenticated users to obtain internal system privileges by leveraging a username of __system in an arbitrary database.
MongoDB 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allows remote authen ...
MongoDB 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allows remote authenticated users to obtain internal system privileges by leveraging a username of __system in an arbitrary database.
6.5 Medium
CVSS2