Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
MongoDB Connector for BI installation MSI leave ACLs unset on custom installation directories
Vulnerability Description
MongoDB Connector for BI installation via MSI on Windows leaves ACLs unset on custom install directories allows Privilege Escalation.This issue affects MongoDB Connector for BI: from 2.0.0 through 2.14.24.
CVSS Information
N/A
Vulnerability Type
缺省权限不正确
Vulnerability Title
MongoDB 安全漏洞
Vulnerability Description
MongoDB是美国MongoDB公司的一种面向文档的数据库管理系统。 MongoDB 2.0.0版本至2.14.24版本存在安全漏洞,该漏洞源于Windows上通过MSI安装时未设置自定义安装目录的ACL,可能导致权限提升。
CVSS Information
N/A
Vulnerability Type
N/A