2016-10-03 18:00:00
mitre
PUBLISHED
The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files.