Vulnerabilities > CVE-2020-7926 - Improper Handling of Exceptional Conditions vulnerability in Mongodb 4.4.0

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

mongodb

CWE-755

NVD

Published: 2020-11-23

Updated: 2024-09-16

Summary

A user authorized to perform database queries may cause denial of service by issuing a specially crafted query which violates an invariant in the server selection subsystem. This issue affects MongoDB Server v4.4 versions prior to 4.4.1. Versions before 4.4 are not affected.

Vulnerable Configurations

Part	Description	Count
Application	Mongodb Mongodb Mongodb 4.4.0	16

Common Weakness Enumeration (CWE)

CWE-755 - Improper Handling of Exceptional Conditions

References

https://jira.mongodb.org/browse/SERVER-50170