An out-of-bounds read in the 'bson' module of PyMongo 4.6.2 or earlier allows deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memory.
History

Tue, 17 Sep 2024 02:30:00 +0000

Type Values Removed Values Added
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mongodb

Published: 2024-06-05T14:32:56.435Z

Updated: 2024-09-16T23:02:28.936Z

Reserved: 2024-06-04T13:49:31.496Z

Link: CVE-2024-5629

cve-icon Vulnrichment

Updated: 2024-09-16T23:02:28.936Z

cve-icon NVD

Status : Modified

Published: 2024-06-05T15:15:12.737

Modified: 2024-11-21T09:48:02.860

Link: CVE-2024-5629

cve-icon Redhat

Severity : Low

Publid Date: 2024-06-05T00:00:00Z

Links: CVE-2024-5629 - Bugzilla