Databases : MongoDB DoS Vulnerability (SERVER-92382)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.153224

Category: Databases

Title: MongoDB DoS Vulnerability (SERVER-92382) - Linux

Summary: MongoDB is prone to a denial of service (DoS) vulnerability.

Description: Summary:
MongoDB is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
prepareUnique index may cause secondaries to crash due to
incorrect enforcement of index constraints on secondaries, where in extreme cases may cause
multiple secondaries crashing leading to no primaries.

Affected Software/OS:
MongoDB version 6.0.x prior to 6.0.17, 7.0.x prior to 7.0.13
and 7.3.x prior to 7.3.4.

Solution:
Update to version 6.0.17, 7.0.13, 7.3.4 or later.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:L/Au:S/C:N/I:N/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2024-8305

Copyright Copyright (C) 2024 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.153224
Category:	Databases
Title:	MongoDB DoS Vulnerability (SERVER-92382) - Linux
Summary:	MongoDB is prone to a denial of service (DoS) vulnerability.
Description:	Summary: MongoDB is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: prepareUnique index may cause secondaries to crash due to incorrect enforcement of index constraints on secondaries, where in extreme cases may cause multiple secondaries crashing leading to no primaries. Affected Software/OS: MongoDB version 6.0.x prior to 6.0.17, 7.0.x prior to 7.0.13 and 7.3.x prior to 7.3.4. Solution: Update to version 6.0.17, 7.0.13, 7.3.4 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2024-8305
Copyright	Copyright (C) 2024 Greenbone AG