#VU31452 Information disclosure in MongoDB
Vulnerability identifier: #VU31452
Vulnerability risk: Low
CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-200
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
MongoDB
Server applications /
Database software
Vendor: MongoDB, Inc.
Description
The vulnerability allows a local authenticated user to gain access to sensitive information.
The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files.
Mitigation
Install update from vendor's website.
Vulnerable software versions
MongoDB: 3.3.0 - 3.3.13
External links
http://www.openwall.com/lists/oss-security/2016/07/29/4
http://www.openwall.com/lists/oss-security/2016/07/29/8
http://www.securityfocus.com/bid/92204
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=832908
http://bugzilla.redhat.com/show_bug.cgi?id=1362553
http://github.com/mongodb/mongo/commit/035cf2afc04988b22cb67f4ebfd77e9b344cb6e0
http://jira.mongodb.org/browse/SERVER-25335
http://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5MCE2ZLFBNOK3TTWSTXZJQGZVP4EEJDL/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
