Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
MongoDB DoS Vulnerability (SERVER-38275) - Windows
Information
Severity
Severity
Medium
Family
Family
Databases
CVSSv2 Base
CVSSv2 Base
6.1
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:M/C:N/I:N/A:C
Solution Type
Solution Type
Vendor Patch
Created
Created
3 years ago
Modified
Modified
3 years ago
Summary
MongoDB is prone to a denial of service (DoS) vulnerability.
Insight
Insight
A user authorized to performing a specific type of query may trigger a denial of service by issuing a generic explain command on a find query.
Affected Software
Affected Software
MongoDB versions 3.6.x - 3.6.11, 4.0.x - 4.0.5 and 4.1.x - 4.1.6.
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
Update to version 3.6.11, 4.0.6, 4.1.7 or later.