MongoDB 4.3.1

CPE Details

MongoDB 4.3.1
mongodb
mongodb
4.3.1
2020-05-21
14h57 +00:00
2020-05-21
14h57 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:mongodb:mongodb:4.3.1:*:*:*:*:*:*:*

Informations

Vendor

mongodb

Product

mongodb

Version

4.3.1

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2020-7921 2020-05-06 12h55 +00:00 Improper serialization of internal state in the authorization subsystem in MongoDB Server's authorization subsystem permits a user with valid credentials to bypass IP whitelisting protection mechanisms following administrative action. This issue affects MongoDB Server v4.2 versions prior to 4.2.3; MongoDB Server v4.0 versions prior to 4.0.15; MongoDB Server v4.3 versions prior to 4.3.3and MongoDB Server v3.6 versions prior to 3.6.18.
5.3
Moyen
CVE-2014-8180 2017-06-06 16h00 +00:00 MongoDB on Red Hat Satellite 6 allows local users to bypass authentication by logging in with an empty password and delete information which can cause a Denial of Service.
5.5
Moyen