USN-5052-1: MongoDB vulnerability
MongoDB would fail to properly invalidate existing sessions for deleted
users. This could allow a remote authenticated attacker to gain elevated
privileges if their user account was recreated with elevated privileges.
Source: USN-5052-1: MongoDB vulnerability
Leave a Reply