Bernard Gorman

**Name of the Vulnerable Software and Affected Versions** MongoDB Server versions prior to 4.5.1 MongoDB Server versions 4.4 prior to 4.4.1 MongoDB Server versions 4.2 prior to 4.2.9 MongoDB Server versions 4.0 prior to 4.0.20 MongoDB Server versions 3.6 prior to 3.6.20 **Description** A user authorized to perform database queries may trigger a read overrun and access arbitrary memory by issuing specially crafted queries. **Recommendations** For MongoDB Server version 4.5, update to version 4.5.1 or later. For MongoDB Server version 4.4, update to version 4.4.1 or later. For MongoDB Server version 4.2, update to version 4.2.9 or later. For MongoDB Server version 4.0, update to version 4.0.20 or later. For MongoDB Server version 3.6, update to version 3.6.20 or later.