A user authorized to perform database queries may cause denial of service by issuing specially crafted queries, which violate an invariant in the query subsystem's support for geoNear. This issue affects MongoDB Server v4.4 versions prior to 4.4.0-rc7; MongoDB Server v4.2 versions prior to 4.2.8 and MongoDB Server v4.0 versions prior to 4.0.19.
References
Link | Resource |
---|---|
https://jira.mongodb.org/browse/SERVER-47773 | Issue Tracking Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mongodb
Published: 2020-08-21T00:00:00
Updated: 2024-06-04T17:12:12.302Z
Reserved: 2020-01-23T00:00:00
Link: CVE-2020-7923
JSON object: View
NVD Information
Status : Modified
Published: 2020-08-21T15:15:13.273
Modified: 2024-01-23T16:15:48.907
Link: CVE-2020-7923
JSON object: View
Redhat Information
No data.
CWE