An unauthenticated user can trigger a fatal assertion in the server while generating ftdc diagnostic metrics due to attempting to build a BSON object that exceeds certain memory sizes. This issue affects MongoDB Server v5.0 versions prior to and including 5.0.16 and MongoDB Server v6.0 versions prior to and including 6.0.5.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Mon, 29 Sep 2025 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:mongodb:mongodb:*:*:*:*:*:*:*:* |

Status: PUBLISHED
Assigner: mongodb
Published:
Updated: 2024-08-01T20:12:06.214Z
Reserved: 2024-04-05T13:04:50.336Z
Link: CVE-2024-3374

Updated: 2024-08-01T20:12:06.214Z

Status : Analyzed
Published: 2024-05-14T16:17:31.850
Modified: 2025-09-29T18:05:41.620
Link: CVE-2024-3374


No data.