An out-of-bounds read in the 'bson' module of PyMongo 4.6.2 or earlier allows deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memory.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mongodb

Published: 2024-06-05T14:32:56.435Z

Updated: 2024-08-01T21:18:06.580Z

Reserved: 2024-06-04T13:49:31.496Z

Link: CVE-2024-5629

cve-icon Vulnrichment

Updated: 2024-08-01T21:18:06.580Z

cve-icon NVD

Status : Analyzed

Published: 2024-06-05T15:15:12.737

Modified: 2024-06-18T18:31:05.663

Link: CVE-2024-5629

cve-icon Redhat

Severity : Low

Publid Date: 2024-06-05T00:00:00Z

Links: CVE-2024-5629 - Bugzilla