High severity7.5NVD Advisory· Published Nov 23, 2020· Updated Jun 17, 2026
CVE-2020-7925
CVE-2020-7925
Description
Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticated attacker to use a specially crafted request to cause a denial of service. This issue affects MongoDB Server v4.4 versions prior to 4.4.0-rc12; MongoDB Server v4.2 versions prior to 4.2.9.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- MongoDB Inc./MongoDB Serverv5Range: 4.2
Patches
Vulnerability mechanics
References
1- jira.mongodb.org/browse/SERVER-49142nvdIssue TrackingVendor Advisory
News mentions
0No linked articles in our index yet.