Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Won't Fix
Priority: Major - P3
Fix Version/s: None
Affects Version/s: 5.0 Required, 4.0 Required, 4.2 Required, 4.4 Required, 6.0 Required
Component/s: None
Labels:
None

Assigned Teams:

Server Security
Operating System:
ALL
Sprint:
Security 2023-05-01, Security 2023-05-15, Security 2024-01-22

When we create an account that can read and write the system db(admin,config,local), the account can modify the system namespace(config.transactions,config.chunks.xxx,
config.cache.xx, etc).The reason is that we missed some system namespace when we judge the nornal collection.

the verification steps are as follows：

step 1: create a user that can read and write config,local,admin

step 2: log in the cluster with the user, we can verify system namespace data， even drop system namespace

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

image-2023-04-14-20-39-10-234.png
36 kB
Apr 14 2023 12:39:11 PM UTC
image-2023-04-14-20-43-39-121.png
74 kB
Apr 14 2023 12:43:42 PM UTC
image-2023-04-14-20-45-20-986.png
73 kB
Apr 14 2023 12:45:22 PM UTC
image-2023-04-14-22-23-00-492.png
53 kB
Apr 14 2023 02:23:01 PM UTC
image-2023-04-14-22-26-41-220.png
48 kB
Apr 14 2023 02:26:42 PM UTC
image-2023-04-14-22-36-10-185.png
94 kB
Apr 14 2023 02:36:12 PM UTC

Assignee:: Sara Golemon

Reporter:: y yz

Participants:: Sara Golemon, y yz

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: Apr 14 2023 12:47:20 PM UTC

Updated:: Jan 19 2024 04:17:23 PM UTC

Resolved:: Jan 19 2024 04:17:23 PM UTC

Details

Description

Attachments

Attachments

Activity

People

Dates