Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticated malicious user to use a specially crafted request to cause a denial of service. This issue affects MongoDB Server v4.4 versions before 4.4.0-rc12; MongoDB Server v4.2 versions before 4.2.9.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mongodb mongodb |
||
mongodb mongodb 4.4.0 |