4 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-2391
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect parsing of certain JSON input may result in js-bson not correctly serializing BSON. This may cause unexpected application behaviour including data...
CVE-2019-2391
CVE-2019-2391 affects the MongoDB js-bson library (version 1.1.3 and earlier). The issue arises from incorrect parsing of certain JSON input, which can cause js-bson to serialize BSON inaccurately, potentially leading to data disclosure or unexpected behavior in affected applications. Connected d...
CVE-2019-2391 JS-bson may incorrectly serialise some requests
Incorrect parsing of certain JSON input may result in js-bson not correctly serializing BSON. This may cause unexpected application behaviour including data disclosure. This issue affects: MongoDB Inc. js-bson library version 1.1.3 and prior to...
Internal Property Tampering
Overview bson is a BSON Parser for node and browser. Affected versions of this package are vulnerable to Internal Property Tampering. The package will ignore an unknown value for an object's bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type...