#VU87867 Out-of-bounds write in MongoDB - CVE-2021-32040

Cybersecurity Help s.r.o.

Published: 2024-03-27

Vulnerability identifier: #VU87867

Vulnerability risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-32040

CWE-ID: CWE-787

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
MongoDB
Server applications / Database software

Vendor: MongoDB, Inc.

Description

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to extremely long aggregation pipeline in conjunction with a specific stage/operator. A remote attacker can create a specially crafted file, trick the victim into opening it using the affected software, trigger an out-of-bounds write and perform a denial of service attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

MongoDB: 4.2.0 - 5.0.3

External links
https://jira.mongodb.org/browse/SERVER-58203
https://jira.mongodb.org/browse/SERVER-60218
https://jira.mongodb.org/browse/SERVER-59299
https://security.netapp.com/advisory/ntap-20220609-0005/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM Spectrum Protect Plus

Multiple vulnerabilities in IBM Storage Copy Data Management