Description
A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries which trigger an invariant in the IndexBoundsBuilder. This issue affects MongoDB Server v4.2 versions prior to 4.2.2.
Remediation
References
Related Vulnerabilities
WordPress Plugin Software License Manager Cross-Site Scripting (4.4.9)
MySQL CVE-2021-2007 Vulnerability (CVE-2021-2007)
GlassFish CVE-2012-0551 Vulnerability (CVE-2012-0551)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4279)
Moodle Improper Privilege Management Vulnerability (CVE-2023-5549)