CVE-2018-20805

Опубликовано: 23 нояб. 2020

Источник: ubuntu

Приоритет: medium

CVSS2: 4

CVSS3: 6.5

Описание

A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which perform an $elemMatch . This issue affects MongoDB Server v4.0 versions prior to 4.0.5 and MongoDB Server v3.6 versions prior to 3.6.10.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/xenial	needs-triage
esm-infra-legacy/trusty	needs-triage
focal	ignored	end of standard support, was needs-triage
groovy	DNE
hirsute	DNE
impish	DNE

Показывать по

Ссылки на источники

4 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-20805

CVSS3: 6.5

redhat

около 5 лет назад

CVE-2018-20805

CVSS3: 6.5

nvd

около 5 лет назад

CVE-2018-20805

CVSS3: 6.5

debian

около 5 лет назад

A user authorized to perform database queries may trigger denial of se ...

GHSA-h55v-wgpx-c3rf

CVSS3: 6.5

github

больше 3 лет назад

A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which perform an $elemMatch This issue affects: MongoDB Inc. MongoDB Server v4.0 versions prior to 4.0.5; v3.6 versions prior to 3.6.10. This issue affects: MongoDB Inc. MongoDB Server 3.6 versions prior to 3.6.10; 4.0 versions prior to 4.0.5.

4 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2018-20805

Описание

Пакет mongodb

Ссылки на источники

Связанные уязвимости