VYPR
Medium severity6.5NVD Advisory· Published Aug 21, 2020· Updated Jun 17, 2026

CVE-2020-7923

CVE-2020-7923

Description

A user authorized to perform database queries may cause denial of service by issuing specially crafted queries, which violate an invariant in the query subsystem's support for geoNear. This issue affects MongoDB Server v4.4 versions prior to 4.4.0-rc7; MongoDB Server v4.2 versions prior to 4.2.8 and MongoDB Server v4.0 versions prior to 4.0.19.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • MongoDB/Serverllm-fuzzy
    Range: >=4.0.0, <4.0.19; >=4.2.0, <4.2.8; >=4.4.0, <4.4.0-rc7
  • osv-coords
    Range: >= 4.0.0, < 4.0.19
  • MongoDB Inc./MongoDB Serverv5
    Range: 4.4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.