Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Potential exposure of log information in Ops Manager
Vulnerability Description
In affected Ops Manager versions there is an exposed http route was that may allow attackers to view a specific access log of a publicly exposed Ops Manager instance. This issue affects: MongoDB Inc. MongoDB Ops Manager 4.0 versions 4.0.9, 4.0.10 and MongoDB Ops Manager 4.1 version 4.1.5.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
Vulnerability Type
直接请求(强制性浏览)
Vulnerability Title
MongoDB Ops Manager 安全漏洞
Vulnerability Description
MongoDB Ops Manager是美国MongoDB公司的一套支持管理、监视和备份MongoDB部署的解决方案。 MongoDB Ops Manager 4.0.9版本、4.0.10版本和4.1.5版本中存在安全漏洞。攻击者可利用该漏洞查看公开的Ops Manager实例的特定访问日志。
CVSS Information
N/A
Vulnerability Type
N/A