Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-49404

Enforce additional checks in $arrayToObject

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 4.0.20, 4.2.9, 4.4.1, 3.6.20, 4.7.0
    • Component/s: None
    • Labels:
      None
    • Backwards Compatibility:
      Fully Compatible
    • Backport Requested:
      v4.4, v4.2, v4.0, v3.6
    • Sprint:
      Query 2020-07-27, Query 2020-08-10

      Description

      CVE ID: CVE-2020-7928

      Title: Improper neutralization of null byte leads to read overrun

      Description:

      A user authorized to perform database queries may trigger a read overrun and access arbitrary memory by issuing specially crafted queries. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.1; v4.2 versions prior to 4.2.9; v4.0 versions prior to 4.0.20; v3.6 versions prior to 3.6.20.

      CVSS score: 

      This issue's CVSS:3.1 severity is scored at 6.5 using the following scoring metrics:

      CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

      Affected versions:

      This issue affects: MongoDB Inc. MongoDB Server:

      v4.4 versions prior to 4.4.1;

      v4.2 versions prior to 4.2.9;

      v4.0 versions prior to 4.0.20;

      v3.6 versions prior to 3.6.20.

       

      CWE: ** CWE-158: Improper Neutralization of Null Byte or NUL Character

       

      Underlying operating systems affected: ALL

        Attachments

          Activity

            People

            Assignee:
            andrew.paroski Drew Paroski
            Reporter:
            bernard.gorman Bernard Gorman
            Participants:
            Votes:
            0 Vote for this issue
            Watchers:
            12 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: