Описание
When run on commands with certain arguments set, explain may fail to validate these arguments before using them. This can lead to crashes in router servers. This affects MongoDB Server v5.0 prior to 5.0.31, MongoDB Server v6.0 prior to 6.0.20, MongoDB Server v7.0 prior to 7.0.16 and MongoDB Server v8.0 prior to 8.0.4
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/bionic | deferred | 2026-02-18 |
| esm-apps/focal | deferred | 2026-02-18 |
| esm-apps/xenial | deferred | 2026-02-18 |
| esm-infra-legacy/trusty | deferred | 2026-02-18 |
| focal | ignored | end of standard support, was needs-triage |
| jammy | DNE | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE |
Показывать по
6.5 Medium
CVSS3
Связанные уязвимости
When run on commands with certain arguments set, explain may fail to validate these arguments before using them. This can lead to crashes in router servers. This affects MongoDB Server v5.0 prior to 5.0.31, MongoDB Server v6.0 prior to 6.0.20, MongoDB Server v7.0 prior to 7.0.16 and MongoDB Server v8.0 prior to 8.0.4
When run on commands with certain arguments set, explain may fail to v ...
When run on commands with certain arguments set, explain may fail to validate these arguments before using them. This can lead to crashes in router servers. This affects MongoDB Server v5.0 prior to 5.0.31, MongoDB Server v6.0 prior to 6.0.20, MongoDB Server v7.0 prior to 7.0.16 and MongoDB Server v8.0 prior to 8.0.4
Уязвимость функции explain системы управления базами данных MongoDB, позволяющая нарушителю вызвать отказ в обслуживании
6.5 Medium
CVSS3