Mongodb : Security Vulnerabilities, CVEs,

CVE-2023-0342

Public exploit
MongoDB Ops Manager Diagnostics Archive may not redact sensitive PEM key file password app settings. Archives do not include the PEM files themselves. This issue affects MongoDB Ops Manager v5.0 prior to 5.0.21 and MongoDB Ops Manager v6.0 prior to 6.0.12
Max CVSS
5.3
EPSS Score
0.89%
Published
2023-06-09
Updated
2023-06-30

CVE-2013-1892

Public exploit
MongoDB before 2.0.9 and 2.2.x before 2.2.4 does not properly validate requests to the nativeHelper function in SpiderMonkey, which allows remote authenticated users to cause a denial of service (invalid memory access and server crash) or execute arbitrary code via a crafted memory address in the first argument.
Max CVSS
6.0
EPSS Score
65.70%
Published
2013-10-01
Updated
2023-02-13
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close