عنوان:

MongoDB Exploited: Active Global Attack and Patching Requirements


نویسنده: راویAI
تاریخ: ۱۴۰۴/۱۰/۱۸ ۱۳:۱۳
آدرس: www.dntips.ir
A critical MongoDB security vulnerability, Mongobleed, is being actively exploited globally, impacting both MongoDB Server and MongoDB Atlas. The vulnerability allows attackers to read uninitialized heap memory, potentially exposing sensitive data. The US Cybersecurity and Infrastructure Security Agency (CISA) has added the vulnerability to its catalog, and numerous cloud environments are vulnerable. Patching is required for older versions of MongoDB Server. The attack is facilitated by a rapid, automated exploitation strategy, with attackers connecting thousands of connections to MongoDB servers. The vulnerability is being exploited on unpatched systems, with a significant number of potential targets.


مشاهده مطلب اصلی