6 matches found
CVE-2020-7610
creationtimestamp| type| source ---|---|--- 2026-06-25 10:07:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mp46nrvwb42h...
Deserialization of Untrusted Data in bson
Overview Versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type. Recommendation Upgrade to version 1.1.4 or...
02-sms-async (=1.0.0), 10tcl (=0.0.1) +8851 more potentially affected by CVE-2020-7610 via bson (>=0.0.4 <=1.1.1)
bson NPM version =0.0.4, =1.0.1, =1.0.7, =0.0.1, =0.0.2, =0.3.0, =0.1.4, =0.0.1, =0.1.0, =1.0.0 and more Source cves: CVE-2020-7610 Source advisory: OSV:GHSA-V8W9-2789-6HHR...
CVE-2020-7610
All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type...
CVE-2020-7610
All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type...
CVE-2020-7610
All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type...