A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use $lookup and collations. This issue affects MongoDB Server v4.2 versions prior to 4.2.1; MongoDB Server v4.0 versions prior to 4.0.13 and MongoDB Server v3.6 versions prior to 3.6.15.
Metrics
Affected Vendors & Products
References
History
Mon, 16 Sep 2024 22:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use $lookup and collations. This issue affects MongoDB Server v4.2 versions prior to 4.2.1; MongoDB Server v4.0 versions prior to 4.0.13 and MongoDB Server v3.6 versions prior to 3.6.15. | A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use $lookup and collations. This issue affects MongoDB Server v4.2 versions prior to 4.2.1; MongoDB Server v4.0 versions prior to 4.0.13 and MongoDB Server v3.6 versions prior to 3.6.15. |
MITRE
Status: PUBLISHED
Assigner: mongodb
Published: 2020-11-23T15:30:24.790968Z
Updated: 2024-09-16T22:40:38.672Z
Reserved: 2018-12-10T00:00:00
Link: CVE-2019-2393
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-11-23T16:15:13.027
Modified: 2024-11-21T04:40:47.113
Link: CVE-2019-2393
Redhat