Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-2391

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect parsing of certain JSON input may result in js-bson not correctly serializing BSON. This may cause unexpected application behaviour including data...

5.5CVSS5.6AI score0.00906EPSS
Exploits0References2
CVE
CVE
added 2020/03/31 1:25 p.m.75 views

CVE-2019-2391

CVE-2019-2391 affects the MongoDB js-bson library (version 1.1.3 and earlier). The issue arises from incorrect parsing of certain JSON input, which can cause js-bson to serialize BSON inaccurately, potentially leading to data disclosure or unexpected behavior in affected applications. Connected d...

5.5CVSS5.5AI score0.00906EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/03/31 1:25 p.m.26 views

CVE-2019-2391 JS-bson may incorrectly serialise some requests

Incorrect parsing of certain JSON input may result in js-bson not correctly serializing BSON. This may cause unexpected application behaviour including data disclosure. This issue affects: MongoDB Inc. js-bson library version 1.1.3 and prior to...

4.2CVSS5.4AI score0.00906EPSS
Exploits0References1
Snyk
Snyk
added 2020/03/24 3:35 p.m.0 views

Internal Property Tampering

Overview bson is a BSON Parser for node and browser. Affected versions of this package are vulnerable to Internal Property Tampering. The package will ignore an unknown value for an object's bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type...

9.8CVSS6.8AI score0.02164EPSS
Exploits0References2
Rows per page
Query Builder