Red Hat Bugzilla – Bug 1301703
CVE-2014-8180 Satellite 6: mongodb accessible by local users without authentication resulting in Denial of Service
Last modified: 2016-09-19 15:52:57 EDT
Jan Hutař of Red Hat reports:
MongoDB on Satellite 6 is configured without a password by default, this allows
local users to connect to MongoDB and cause information to be deleted.
This is now fixed in documentation: