The host is installed with MongoDB 3.6.0 before 3.6.20, 4.0.0 before 4.0.21 or 4.2.0 before 4.2.10 or and is prone to a spoofing vulnerability. A flaw is present in the application, which fails to handle an issues in unspecified vectors. On successful exploitation, sending specially crafted commands to a MongoDB Server may result in artificial log entries being generated or for log entries to be split.