Lucene search
Redhat.comRH:CVE-2024-3372HistoryMay 15, 2024 - 4:54 p.m.
CVE-2024-3372
2024-05-1516:54:20
redhat.com
access.redhat.com
85
cve-2024-3372
metadata validation
server serialization
pre-authentication
serverstatus responses
mongodb server
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.9
Confidence
High
EPSS
0
Percentile
9.0%
A vulnerability was found in MongoDB. A remote, unauthenticated attacker could trigger the flaw by providing an invalid BSON. This issue can cause the server to incorrectly serialize the file, impacting the availability and integrity.
Related
osv
osv
CVE-2024-3372
2024-05-14 16:17:00
openvas
openvas
MongoDB Improper Validation Vulnerability (SERVER-85263) - Windows
2024-05-16 00:00:00
MongoDB Improper Validation Vulnerability (SERVER-85263) - Linux
2024-05-16 00:00:00
vulnrichment
vulnrichment
nessus
nessus
nvd
nvd
CVE-2024-3372
2024-05-14 16:17:31
cvelist
cvelist
cve
cve
CVE-2024-3372
2024-05-14 16:17:31
ubuntucve
ubuntucve
CVE-2024-3372
2024-05-14 00:00:00
mongodb
mongodb
MongoDB Server may have unexpected application behaviour due to invalid BSON
2024-05-14 14:56:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.9
Confidence
High
EPSS
0
Percentile
9.0%
Related for RH:CVE-2024-3372