Security Advisory

CVE-2018-20802

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-11-23 15:15:18

Last updated 2024-09-17 02:26:45

Assigner mongodb

State PUBLISHED

Description

A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries with compound indexes affecting QueryPlanner. This issue affects MongoDB Server v3.6 versions prior to 3.6.9 and MongoDB Server v4.0 versions prior to 4.0.3.

← Browse all CVEs View on cve.org ↗