CVE-2024-10921 | MongoDB Server up to 5.0.29/6.0.18/7.0.14/8.0.3 BSON Requests null byte or nul character

Posted by Angelo Barbosa | Nov 14, 2024 | CVE

A vulnerability has been found in MongoDB Server up to 5.0.29/6.0.18/7.0.14/8.0.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the component BSON Requests Handler. The manipulation leads to improper neutralization of null byte or nul character.

This vulnerability is known as CVE-2024-10921. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-10921 | MongoDB Server up to 5.0.29/6.0.18/7.0.14/8.0.3 BSON Requests null byte or nul character

Related Posts

CVE-2024-10193 | WAVLINK WN530H4/WN530HG4/WN572HG3 up to 20221028 internet.cgi ping_ddns DDNS command injection

CVE-2024-4424 | CEMI Tomasz Pawełek CemiPark 4.5/4.7/5.03 cross site scripting

CVE-2024-38741 | Noor-E-Alam Amazing Hover Effects Plugin up to 2.4.9 on WordPress cross site scripting

CVE-2024-37999 | Siemens Medicalis Workflow Orchestrator improper ownership management