WEB APPLICATION VULNERABILITIES Standard & Premium

MongoDb Other Vulnerability (CVE-2019-20923)

Description

A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which throw unhandled Javascript exceptions containing types intended to be scoped to the Javascript engine's internals. This issue affects MongoDB Server v4.0 versions prior to 4.0.7.

Remediation

References

Related Vulnerabilities

Undertow Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-10687)

WordPress Plugin Secure File Manager Arbitrary File Upload (2.9.3)

WordPress Plugin WP Rollback Multiple Vulnerabilities (1.2.2)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-37304)

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-1709)

Severity

Medium

Classification

CVE-2019-20923 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities