CVE-2022-24272

All FrameworksMongoDBCWE-617CVE-2022-24272

CVE-2022-24272

State: PUBLISHED · Published: 2022-04-21 · Updated: 2024-09-16 · Assigner: mongodb
Description
An authenticated user may trigger an invariant assertion during command dispatch due to incorrect validation on the $external database. This may result in mongod denial of service or server crash. This issue affects: MongoDB Inc. MongoDB Server v5.0 versions, prior to and including v5.0.6.
CWE
Affected
CVSS
References
Source
cvelistV5-main/cves/2022/24xxx/CVE-2022-24272.json