SecuritySpace - CVE-2019-20925

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2019-20925

Description: An unauthenticated client can trigger denial of service by issuing specially crafted wire protocol messages, which cause the message decompressor to incorrectly allocate memory. This issue affects MongoDB Server v4.2 versions prior to 4.2.1; MongoDB Server v4.0 versions prior to 4.0.13; MongoDB Server v3.6 versions prior to 3.6.15 and MongoDB Server v3.4 versions prior to 3.4.24.

Test IDs: 1.3.6.1.4.1.25623.1.0.144957 1.3.6.1.4.1.25623.1.0.144958 1.3.6.1.4.1.25623.1.0.845085

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2019-20925
https://jira.mongodb.org/browse/SERVER-43751
https://jira.mongodb.org/browse/SERVER-43751

CVE ID:	CVE-2019-20925
Description:	An unauthenticated client can trigger denial of service by issuing specially crafted wire protocol messages, which cause the message decompressor to incorrectly allocate memory. This issue affects MongoDB Server v4.2 versions prior to 4.2.1; MongoDB Server v4.0 versions prior to 4.0.13; MongoDB Server v3.6 versions prior to 3.6.15 and MongoDB Server v3.4 versions prior to 3.4.24.
Test IDs:	1.3.6.1.4.1.25623.1.0.144957 1.3.6.1.4.1.25623.1.0.144958 1.3.6.1.4.1.25623.1.0.845085
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2019-20925 https://jira.mongodb.org/browse/SERVER-43751 https://jira.mongodb.org/browse/SERVER-43751