Known Vulnerabilities for Mongodb by Mongodb

Listed below are 10 of the newest known vulnerabilities associated with the software "Mongodb" by "Mongodb".

These CVEs are retrieved based on exact matches on listed software and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-32037 An authorized user may trigger an invariant which may result in denial of service or server exit if a relevant aggregation re... 6.5 - MEDIUM 2021-11-24 2021-11-29
CVE-2021-20333 Sending specially crafted commands to a MongoDB Server may result in artificial log entries being generated or for log entrie... 5.3 - MEDIUM 2021-07-23 2021-08-03
CVE-2021-20330 An attacker with basic CRUD permissions on a replicated collection can run the applyOps command with specially malformed oplo... 6.5 - MEDIUM 2021-12-15 2021-12-16
CVE-2021-20326 A user authorized to performing a specific type of find query may trigger a denial of service. This issue affects: MongoDB In... 6.5 - MEDIUM 2021-04-30 2021-05-03
CVE-2020-7929 A user authorized to perform database queries may trigger denial of service by issuing specially crafted query contain a type... 6.5 - MEDIUM 2021-03-01 2021-03-08
CVE-2020-7928 A user authorized to perform database queries may trigger a read overrun and access arbitrary memory by issuing specially cra... 6.5 - MEDIUM 2020-11-23 2020-12-02
CVE-2020-7926 A user authorized to perform database queries may cause denial of service by issuing a specially crafted query which violates... 6.5 - MEDIUM 2020-11-23 2020-11-29
CVE-2020-7925 Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticate... 7.5 - HIGH 2020-11-23 2021-10-19
CVE-2020-7923 A user authorized to perform database queries may cause denial of service by issuing specially crafted queries, which violate... 6.5 - MEDIUM 2020-08-21 2020-12-01
CVE-2020-7921 Improper serialization of internal state in the authorization subsystem in MongoDB Server's authorization subsystem permits a... 5.3 - MEDIUM 2020-05-06 2020-07-07

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language

Popular searches for Mongodb

The most popular database for modern apps

The most popular database for modern apps We're the creators of MongoDB 5 3 1, the most popular database for modern apps, and MongoDB Atlas, the global cloud database on AWS, Azure, and GCP. Easily organize, use, and enrich data in real time, anywhere. MongoDB Database Data Application software Cloud database Cloud computing Amazon Web Services Programmer Microsoft Azure Zip (file format) Google Cloud Platform Business intelligence Programming tool Free software Data (computing) Document-oriented database Web search engine Data lake Amazon S3 MySQL

MongoDB Cloud

MongoDB Cloud MongoDB Cloud is a unified data platform for modern applications and includes a global cloud database, search, data lake, mobile, and application services. MongoDB Cloud computing Database Data Data lake Application software Cloud database Information retrieval Amazon Web Services Atlas (computer) Computing platform Mobile computing Web search engine Application service provider Scalability Data (computing) Realm (database) Application programming interface Software as a service Query language

© 2022 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license. and Source URL Uptime Status