MongoDB 3.0.0 Enterprise Edition

CPE Details

MongoDB 3.0.0 Enterprise Edition
mongodb
mongodb
3.0.0
2019-07-22
09h33 +00:00
2019-07-22
09h33 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:mongodb:mongodb:3.0.0:*:*:*:enterprise:*:*:*

Informations

Vendor

mongodb

Product

mongodb

Version

3.0.0

Software Edition

enterprise

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-32036 2022-02-04 22h33 +00:00 An authenticated user without any specific authorizations may be able to repeatedly invoke the features command where at a high volume may lead to resource depletion or generate high lock contention. This may result in denial of service and in rare cases could result in id field collisions. This issue affects MongoDB Server v5.0 versions prior to and including 5.0.3; MongoDB Server v4.4 versions prior to and including 4.4.9; MongoDB Server v4.2 versions prior to and including 4.2.16 and MongoDB Server v4.0 versions prior to and including 4.0.28
7.1
High
CVE-2015-7882 2019-07-19 13h44 +00:00 Improper handling of LDAP authentication in MongoDB Server versions 3.0.0 to 3.0.6 allows an unauthenticated client to gain unauthorized access.
8.1
High
CVE-2014-8180 2017-06-06 16h00 +00:00 MongoDB on Red Hat Satellite 6 allows local users to bypass authentication by logging in with an empty password and delete information which can cause a Denial of Service.
5.5
Medium
CVE-2016-6494 2016-10-03 16h00 +00:00 The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files.
5.5
Medium