Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
MongoDb Improper Input Validation Vulnerability - CVE-2014-3971 - Vulnerability Database
MongoDb

MongoDb Improper Input Validation Vulnerability - CVE-2014-3971

Medium
Reference: CVE-2014-3971
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-3971
Title: MongoDb Improper Input Validation Vulnerability
Overview:

The CmdAuthenticate::_authenticateX509 function in db/commands/authentication_commands.cpp in mongod in MongoDB 2.6.x before 2.6.2 allows remote attackers to cause a denial of service (daemon crash) by attempting authentication with an invalid X.509 client certificate.