Description
A user authorized to perform database queries may trigger denial of service by issuing specially crafted query contain a type of regex. This issue affects MongoDB Server v3.6 versions prior to 3.6.21 and MongoDB Server v4.0 versions prior to 4.0.20.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Plugin for AdSense Cross-Site Request Forgery (6.06)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0704)
WordPress Plugin WPML (WordPress Multilingual) Cross-Site Request Forgery (4.3.6)
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3662)