Description
The find prototype in scripting/engine_v8.h in MongoDB 2.4.0 through 2.4.4 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and server crash) or possibly execute arbitrary code via an invalid RefDB object.
Remediation
References
Related Vulnerabilities
PostgreSQL Other Vulnerability (CVE-2002-1402)
WordPress Plugin Backup Migration Cross-Site Scripting (1.1.5)
WordPress 4.7.x Multiple Vulnerabilities (4.7 - 4.7.13)
Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.12)
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9518)