Candidate: CVE-2015-7882
PublicDate: 2019-07-19 16:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7882
Description:
 Improper handling of LDAP authentication in MongoDB Server versions 3.0.0
 to 3.0.6 allows an unauthenticated client to gain unauthorized access.
Ubuntu-Description:
Notes:
 msalvatore> Only affects enterprise version
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H [8.1 HIGH]


Patches_mongodb:
upstream_mongodb: released (3.0.7)
precise/esm_mongodb: DNE
trusty_mongodb: ignored (out of standard support)
trusty/esm_mongodb: not-affected (code not present)
xenial_mongodb: not-affected (code not present)
bionic_mongodb: not-affected (1:3.6.3-0ubuntu1.1)
disco_mongodb: not-affected (1:3.6.3-0ubuntu1.1)
devel_mongodb: not-affected (1:3.6.3-0ubuntu1.1)