CNNVD-202507-687 Information
CNNVD ID
CNNVD-202507-687
Related CVE
- CNNVD Published: 2025-07-07
Description (Chinese)
MongoDB Server是美国MongoDB公司的一套开源的NoSQL数据库。该数据库提供面向集合的存储、动态查询、数据复制及自动故障转移等功能。 MongoDB Server 8.0.10之前版本存在安全漏洞,该漏洞源于内存管理效率低下,可能导致服务器崩溃。
Description (English)
MongoDB Server is an open-source NoSQL database for MongoDB in the United States. The database provides a collection-oriented memory, dynamic queries, data replication and automatic downtime transfer. There was a security gap in the pre-MongoDB Server version of 8.0.10, which stemmed from inefficient memory management and could lead to server collapse.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
MongoDB
Published
2025-07-07
Last Modified
2026-02-24
References
https://jira.mongodb.org/browse/SERVER-106751 https://vigilance.fr/vulnerability/MongoDB-Server-denial-of-service-via-Accumulated-Memory-Allocation-47619
Patch
https://www.mongodb.com/docs/manual/release-notes/8.0/#std-label-release-notes-8.0
Share on: