CVE-2013-1892 in MongoDB and Red Hat Products
Published on October 1, 2013

MongoDB before 2.0.9 and 2.2.x before 2.2.4 does not properly validate requests to the nativeHelper function in SpiderMonkey, which allows remote authenticated users to cause a denial of service (invalid memory access and server crash) or execute arbitrary code via a crafted memory address in the first argument.

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2013-1892

stack.watch emails you whenever new vulnerabilities are published in MongoDB or Red Hat Enterprise Mrg. Just hit a watch button to start following.

MongoDB

Red Hat Enterprise Mrg

Exploit Probability

EPSS

53.53%

Percentile

97.95%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2013-1892 in MongoDB and Red Hat ProductsPublished on October 1, 2013

Products Associated with CVE-2013-1892

Exploit Probability

CVE-2013-1892 in MongoDB and Red Hat Products
Published on October 1, 2013