CVE-2021-20331

Specific versions of the MongoDB C# Driver may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when commands such as "saslStart", "saslContinue", "isMaster", "createUser", and "updateUser" are executed. Without due care, an application may inadvertently expose this authenticated-related information, e.g., by writing it to a log file. This issue only arises if an application enables the command listener feature (this is not enabled by default). This issue affects the MongoDB C# Driver v2.12 versions prior to and including 2.12.1.

CVSS v3 4.9 MEDIUM
CVSS v2.0 3.5 LOW

4.9^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

3.5^/10

CVSS v2.0 : LOW

Vector : AV:N/AC:M/Au:S/C:P/I:N/A:N

Exploitability : 6.8 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://jira.mongodb.org/browse/CSHARP-3521	Issue Tracking Patch Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:mongodb:c\#_driver::::::mongodb::*
	cpe:2.3:a:mongodb:c\#_driver:2.11.0:-::::mongodb::*

History

No history.

Information

Published : 2021-05-13 08:15

Updated : 2024-01-23 17:15

NVD link : CVE-2021-20331

Mitre link : CVE-2021-20331

CVE.ORG link : CVE-2021-20331

JSON object : View

Products Affected

mongodb

c\#_driver

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

{"id": "CVE-2021-20331", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 1.2}, {"type": "Secondary", "source": "cna@mongodb.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.2, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 0.6}]}, "published": "2021-05-13T08:15:06.557", "references": [{"url": "https://jira.mongodb.org/browse/CSHARP-3521", "tags": ["Issue Tracking", "Patch", "Vendor Advisory"], "source": "cna@mongodb.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}, {"type": "Secondary", "source": "cna@mongodb.com", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "\nSpecific versions of the MongoDB C# Driver may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when commands such as \"saslStart\", \"saslContinue\", \"isMaster\", \"createUser\", and \"updateUser\" are executed. Without due care, an application may inadvertently expose this authenticated-related information, e.g., by writing it to a log file. This issue only arises if an application enables the command listener feature (this is not enabled by default). This issue affects the MongoDB C# Driver v2.12 versions prior to and including 2.12.1.\n\n\n\n\n"}, {"lang": "es", "value": "Las versiones espec\u00edficas del Controlador MongoDB C# pueden publicar err\u00f3neamente eventos que contienen datos relacionados con la autenticaci\u00f3n en un escucha de comandos configurado por una aplicaci\u00f3n. Los eventos publicados pueden contener datos confidenciales para la seguridad cuando comandos tales como \"saslStart\", \"saslContinue\", \"isMaster\", \"createUser\" y \"updateUser\" son ejecutados. Sin el debido cuidado, una aplicaci\u00f3n puede exponer inadvertidamente esta informaci\u00f3n relacionada con la autenticaci\u00f3n, por ejemplo, escribi\u00e9ndola en un archivo de registro. Este problema solo surge si una aplicaci\u00f3n habilita la funcionalidad command listener (esta no est\u00e1 habilitada por defecto). Este problema afecta al controlador MongoDB C# versiones 2.12 anteriores a 2.12.1 incluy\u00e9ndola"}], "lastModified": "2024-01-23T17:15:08.097", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mongodb:c\\#_driver:*:*:*:*:*:mongodb:*:*", "vulnerable": true, "matchCriteriaId": "6998C551-8878-414C-919A-9305AB7A897E", "versionEndExcluding": "2.12.2", "versionStartIncluding": "2.12.0"}, {"criteria": "cpe:2.3:a:mongodb:c\\#_driver:2.11.0:-:*:*:*:mongodb:*:*", "vulnerable": true, "matchCriteriaId": "69B8F1A7-8B5C-4D6A-A552-A925DA52A12F"}], "operator": "OR"}]}], "sourceIdentifier": "cna@mongodb.com"}