FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mongodb -- Buffer over-reads in MongoDB Server

Affected packages
mongodb50 < 5.0.30
mongodb60 < 6.0.19
mongodb70 < 7.0.15
mongodb80 < 8.0.2

Details

VuXML ID 28ffa931-a510-11ef-8109-b42e991fc52e
Discovery 2024-11-14
Entry 2024-11-17

cna@mongodb.com reports:

An authorized user may trigger crashes or receive the contents of buffer over-reads of Server memory by issuing specially crafted requests that construct malformed BSON in the MongoDB Server.

[source]

References

CVE Name CVE-2024-10921
URL https://nvd.nist.gov/vuln/detail/CVE-2024-10921

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.