Skip to main content

Astra Control Center

2 CVEs product

Monthly

CVE-2024-1351 CRITICAL PATCH Act Now

Under certain configurations of --tlsCAFile and tls.CAFile, MongoDB Server may skip peer certificate validation which may result in untrusted connections to succeed. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure MongoDB Astra Control Center Ontap Tools
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2024-22019 HIGH This Week

A vulnerability in Node.js HTTP servers allows an attacker to send a specially crafted HTTP request with chunked encoding, leading to resource exhaustion and denial of service (DoS). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Node.js Denial Of Service Node Js Astra Control Center
NVD
CVSS 3.1
7.5
EPSS
3.2%
EPSS 0% CVSS 9.8
CRITICAL PATCH Act Now

Under certain configurations of --tlsCAFile and tls.CAFile, MongoDB Server may skip peer certificate validation which may result in untrusted connections to succeed. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure MongoDB Astra Control Center +1
NVD
EPSS 3% CVSS 7.5
HIGH This Week

A vulnerability in Node.js HTTP servers allows an attacker to send a specially crafted HTTP request with chunked encoding, leading to resource exhaustion and denial of service (DoS). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Node.js Denial Of Service Node Js +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy