Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

BDU FSTEC
BDU FSTECadded 2020/04/22 12:0 a.m.1 views

The vulnerability of the _bsotype function in the BSON parsing software package allows a hacker to execute arbitrary code.

The vulnerability of the bsotype function in the BSON parsing software package is related to errors during data deserialization. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.00541EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2020/03/31 2:15 p.m.3 views

DEBIAN-CVE-2019-2391

Incorrect parsing of certain JSON input may result in js-bson not correctly serializing BSON. This may cause unexpected application behaviour including data disclosure. This issue affects: MongoDB Inc. js-bson library version 1.1.3 and prior to...

5.4CVSS5.6AI score0.00379EPSS
Exploits0References1
OSV
OSVadded 2020/03/30 7:15 p.m.1 views

DEBIAN-CVE-2020-7610

All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type...

9.8CVSS6.9AI score0.00541EPSS
Exploits0References1
OSV
OSVadded 2018/07/10 8:29 p.m.3 views

DEBIAN-CVE-2018-13863

The MongoDB bson JavaScript module also known as js-bson versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service ReDoS in lib/bson/decimal128.js. The flaw is triggered when the Decimal128.fromString function is called to parse a long untrusted string...

7.5CVSS6.9AI score0.00387EPSS
Exploits1References1
CNVD
CNVDadded 2015/10/11 12:0 a.m.2 views

PostgreSQL json or jsonb Data Denial of Service Vulnerability

PostgreSQL is an object-relational database management system that supports an extended subset of SQL standards. A security vulnerability exists in PostgreSQL that can be exploited by remote attackers to submit special json or jsonb data to crash the target service...

6.4CVSS8.6AI score0.06572EPSS
Exploits0References1
CNVD
CNVDadded 2015/06/10 12:0 a.m.1 views

RubyGems BSON Denial of Service Vulnerability

RubyGems or gems for short is a Ruby packaging system for packaging Ruby components. A denial of service vulnerability exists in RubyGems BSON. This vulnerability allows attackers to launch denial of service attacks...

9.8CVSS6.7AI score0.01749EPSS
Exploits1References1
CNVD
CNVDadded 2015/06/10 12:0 a.m.2 views

RubyGems BSON Denial of Service Vulnerability (CNVD-2015-03762)

RubyGems or gems for short is a Ruby packaging system for packaging Ruby components. A denial of service vulnerability exists in RubyGems BSON. This vulnerability allows attackers to launch denial of service attacks...

7.5CVSS6.7AI score0.0353EPSS
Exploits1References1
Rows per page
Query Builder