Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
MongoDB Ops Manager may disclose sensitive information in Diagnostic Archive
Vulnerability Description
MongoDB Ops Manager Diagnostics Archive may not redact sensitive PEM key file password app settings. Archives do not include the PEM files themselves. This issue affects MongoDB Ops Manager v5.0 prior to 5.0.21 and MongoDB Ops Manager v6.0 prior to 6.0.12
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
将系统数据暴露到未授权控制的范围
Vulnerability Title
MongoDB Ops Manager 安全漏洞
Vulnerability Description
MongoDB Ops Manager是美国MongoDB公司的一套支持管理、监视和备份MongoDB部署的解决方案。 MongoDB Ops Manager 存在安全漏洞,该漏洞源于不会编辑敏感的 PEM 密钥文件密码应用设置。受影响的产品和版本:MongoDB Ops Manager 5.0.21之前的5.0.x版本, MongoDB Ops Manager 6.0.21之前的6.0.x版本。
CVSS Information
N/A
Vulnerability Type
N/A