CVE-2024-3372 | MongoDB Server up to 5.0.24/6.0.13/7.0.5 BSON deserialization (SERVER-85263)

Posted by Angelo Barbosa | May 14, 2024 | CVE

A vulnerability classified as critical has been found in MongoDB Server up to 5.0.24/6.0.13/7.0.5. This affects an unknown part of the component BSON Handler. The manipulation leads to deserialization.

This vulnerability is uniquely identified as CVE-2024-3372. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-3372 | MongoDB Server up to 5.0.24/6.0.13/7.0.5 BSON deserialization (SERVER-85263)

Related Posts

CVE-2024-0668 | Advanced Database Cleaner Plugin up to 3.1.3 on WordPress process_bulk_action code injection

CVE-2024-0298 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setDiagnosisCfg ip os command injection

CVE-2024-42901 | LimeSurvey 6.5.12 CSV File injection

CVE-2023-50711 | vmm-sys-util prior 0.12.0 deserialization