CPE-28DF9FA1-557A-4207-9A77-D50E8A5DA809 Détail

CPE Details

MongoDB 2.4.0

Vendor

mongodb

Product

mongodb

Version

2.4.0

Created

2013-07-05
11h29 +00:00

Modifié

2013-07-12
16h30 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:mongodb:mongodb:2.4.0:::::::*

Informations

Vendor

mongodb

Product

mongodb

Version

2.4.0

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2021-32036	2022-02-04 22h33 +00:00	An authenticated user without any specific authorizations may be able to repeatedly invoke the features command where at a high volume may lead to resource depletion or generate high lock contention. This may result in denial of service and in rare cases could result in id field collisions. This issue affects MongoDB Server v5.0 versions prior to and including 5.0.3; MongoDB Server v4.4 versions prior to and including 4.4.9; MongoDB Server v4.2 versions prior to and including 4.2.16 and MongoDB Server v4.0 versions prior to and including 4.0.28	7.1	Haute
CVE-2014-8180	2017-06-06 16h00 +00:00	MongoDB on Red Hat Satellite 6 allows local users to bypass authentication by logging in with an empty password and delete information which can cause a Denial of Service.	5.5	Moyen
CVE-2016-3104	2017-04-14 16h00 +00:00	mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a denial of service (memory consumption and process termination) by leveraging in-memory database representation when authenticating against a non-existent database.	7.5	Haute
CVE-2016-6494	2016-10-03 16h00 +00:00	The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files.	5.5	Moyen
CVE-2015-1609	2015-03-30 12h00 +00:00	MongoDB before 2.4.13 and 2.6.x before 2.6.8 allows remote attackers to cause a denial of service via a crafted UTF-8 string in a BSON request.	5
CVE-2013-3969	2013-10-01 20h00 +00:00	The find prototype in scripting/engine_v8.h in MongoDB 2.4.0 through 2.4.4 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and server crash) or possibly execute arbitrary code via an invalid RefDB object.	6.5
CVE-2013-2132	2013-08-15 17h00 +00:00	bson/_cbsonmodule.c in the mongo-python-driver (aka. pymongo) before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to decoding of an "invalid DBRef."	4.3
CVE-2013-4650	2013-07-04 10h00 +00:00	MongoDB 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allows remote authenticated users to obtain internal system privileges by leveraging a username of __system in an arbitrary database.	6.5

MongoDB 2.4.0

CPE Details

CPE Name: cpe:2.3:a:mongodb:mongodb:2.4.0:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:mongodb:mongodb:2.4.0:::::::*