Описание
mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a denial of service (memory consumption and process termination) by leveraging in-memory database representation when authenticating against a non-existent database.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 1:3.6.3-0ubuntu1 |
| cosmic | not-affected | 1:3.6.3-0ubuntu1 |
| devel | DNE | |
| disco | not-affected | 1:3.6.3-0ubuntu1 |
| eoan | not-affected | 1:3.6.3-0ubuntu1 |
| esm-apps/bionic | not-affected | 1:3.6.3-0ubuntu1 |
| esm-apps/focal | not-affected | 1:3.6.3-0ubuntu1 |
| esm-apps/xenial | needed | |
| esm-infra-legacy/trusty | needed |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a denial of service (memory consumption and process termination) by leveraging in-memory database representation when authenticating against a non-existent database.
mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a denial of service (memory consumption and process termination) by leveraging in-memory database representation when authenticating against a non-existent database.
mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remot ...
mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a denial of service (memory consumption and process termination) by leveraging in-memory database representation when authenticating against a non-existent database.
EPSS
5 Medium
CVSS2
7.5 High
CVSS3