Description
A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use the $mod operator to overflow negative values. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.1; v4.2 versions prior to 4.2.9; v4.0 versions prior to 4.0.20; v3.6 versions prior to 3.6.20.
Remediation
References
Related Vulnerabilities
WordPress Plugin jQuery Reply to Comment Cross-Site Request Forgery (1.31)
WordPress Plugin Participants Database Multiple Vulnerabilities (1.7.5.3)
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5597)
Craft CMS Improper Authentication Vulnerability (CVE-2024-41800)
Moodle Improper Access Control Vulnerability (CVE-2016-8643)