SecuritySpace - CVE-2020-7921

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2020-7921

Description: Improper serialization of internal state in the authorization subsystem in MongoDB Server's authorization subsystem permits a user with valid credentials to bypass IP whitelisting protection mechanisms following administrative action. This issue affects MongoDB Server v4.2 versions prior to 4.2.3; MongoDB Server v4.0 versions prior to 4.0.15; MongoDB Server v4.3 versions prior to 4.3.3and MongoDB Server v3.6 versions prior to 3.6.18.

Test IDs: 1.3.6.1.4.1.25623.1.0.143870 1.3.6.1.4.1.25623.1.0.143869

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2020-7921
https://jira.mongodb.org/browse/SERVER-45472
https://jira.mongodb.org/browse/SERVER-45472

CVE ID:	CVE-2020-7921
Description:	Improper serialization of internal state in the authorization subsystem in MongoDB Server's authorization subsystem permits a user with valid credentials to bypass IP whitelisting protection mechanisms following administrative action. This issue affects MongoDB Server v4.2 versions prior to 4.2.3; MongoDB Server v4.0 versions prior to 4.0.15; MongoDB Server v4.3 versions prior to 4.3.3and MongoDB Server v3.6 versions prior to 3.6.18.
Test IDs:	1.3.6.1.4.1.25623.1.0.143870 1.3.6.1.4.1.25623.1.0.143869
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2020-7921 https://jira.mongodb.org/browse/SERVER-45472 https://jira.mongodb.org/browse/SERVER-45472