Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Specific query can cause a DoS against MongoDB Server
Vulnerability Description
A user authorized to perform database queries may cause denial of service by issuing a specially crafted query which violates an invariant in the server selection subsystem. This issue affects MongoDB Server v4.4 versions prior to 4.4.1. Versions before 4.4 are not affected.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
对异常条件的处理不恰当
Vulnerability Title
Mongodb Server 安全漏洞
Vulnerability Description
Mongodb Server是美国Mongodb公司的一套开源的NoSQL数据库。该数据库提供面向集合的存储、动态查询、数据复制及自动故障转移等功能。 MongoDB Server 4.4版本至4.4.1版本存在安全漏洞,该漏洞源于被授权执行数据库查询的用户可能会通过发出一个违反服务器选择子系统中的不变条件的特制查询而导致拒绝服务。这个问题影响:MongoDB服务器版本4.4在4.4.1之前。4.4之前的版本不受影响。
CVSS Information
N/A
Vulnerability Type
N/A