CVE-2024-6376 - Vulnerability Details - OpenCVE

MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection settings with the usage of ejson shell parser in Compass' connection handling. This issue affects MongoDB Compass versions prior to version 1.42.2

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00374.

Key SSVC decision points have not yet been added.

Vendors	Products
Mongodb	Compass

Configuration 1 [-]

cpe:2.3:a:mongodb:compass:*:*:*:*:*:*:*:*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2024-47483	ejson shell parser in MongoDB Compass maybe bypassed
Github GHSA	GHSA-jxr4-4prv-mh83	ejson shell parser in MongoDB Compass maybe bypassed

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://jira.mongodb.org/browse/COMPASS-7496

History

No history.

MITRE

Status: PUBLISHED

Assigner: mongodb

Published: 2024-07-01T14:57:31.704Z

Updated: 2024-08-01T21:33:05.431Z

Reserved: 2024-06-27T07:55:22.098Z

Link: CVE-2024-6376

Vulnrichment

Updated: 2024-08-01T21:33:05.431Z

NVD

Status : Modified

Published: 2024-07-01T15:15:17.673

Modified: 2024-11-21T09:49:31.510

Link: CVE-2024-6376

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-6376", "assignerOrgId": "a39b4221-9bd0-4244-95fc-f3e2e07f1deb", "state": "PUBLISHED", "assignerShortName": "mongodb", "dateReserved": "2024-06-27T07:55:22.098Z", "datePublished": "2024-07-01T14:57:31.704Z", "dateUpdated": "2024-08-01T21:33:05.431Z"}, "containers": {"cna": {"affected": [{"cpes": ["cpe:2.3:a:mongodb:compass:1.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.5:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.6:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.7:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.8:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.9:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.10:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.11:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.12:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.13:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.14:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.15:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.16:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.17:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.18:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.19:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.20:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.21:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.22:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.23:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.24.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.25.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.26.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.26.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.28.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.28.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.29.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.29.5:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.29.6:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.30.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.31.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.31.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.31.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.31.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.32.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.32.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.32.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.32.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.33.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.33.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.34.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.34.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.35.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.36.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.36.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.37.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.38.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.38.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.38.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.39.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.39.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.39.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.39.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.39.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.40.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.40.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.40.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.40.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.40.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.41.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.42.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.42.1:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "product": "MongoDB Compass", "vendor": "MongoDB Inc", "versions": [{"lessThan": "1.42.2", "status": "affected", "version": "0", "versionType": "custom"}]}], "datePublic": "2024-07-01T14:56:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection settings with the usage of ejson shell parser in Compass' connection handling. This issue affects MongoDB Compass versions prior to version 1.42.2</span><br>"}], "value": "MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection settings with the usage of ejson shell parser in Compass' connection handling. This issue affects MongoDB Compass versions prior to version 1.42.2"}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "description": "CWE-20: Improper Input Validation", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "a39b4221-9bd0-4244-95fc-f3e2e07f1deb", "shortName": "mongodb", "dateUpdated": "2024-07-01T14:57:31.704Z"}, "references": [{"url": "https://jira.mongodb.org/browse/COMPASS-7496"}], "source": {"discovery": "EXTERNAL"}, "title": "ejson shell parser in MongoDB Compass maybe bypassed", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-07-01T20:45:03.494038Z", "id": "CVE-2024-6376", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-01T20:45:10.830Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T21:33:05.431Z"}, "title": "CVE Program Container", "references": [{"url": "https://jira.mongodb.org/browse/COMPASS-7496", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://jira.mongodb.org/browse/COMPASS-7496", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T21:33:05.431Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-6376", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-07-01T20:45:03.494038Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-01T20:45:07.675Z"}}], "cna": {"title": "ejson shell parser in MongoDB Compass maybe bypassed", "source": {"discovery": "EXTERNAL"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"cpes": ["cpe:2.3:a:mongodb:compass:1.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.5:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.6:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.7:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.8:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.9:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.10:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.11:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.12:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.13:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.14:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.15:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.16:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.17:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.18:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.19:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.20:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.21:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.22:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.23:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.24.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.25.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.26.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.26.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.28.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.28.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.29.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.29.5:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.29.6:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.30.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.31.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.31.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.31.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.31.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.32.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.32.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.32.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.32.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.33.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.33.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.34.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.34.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.35.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.36.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.36.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.37.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.38.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.38.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.38.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.39.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.39.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.39.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.39.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.39.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.40.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.40.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.40.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.40.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.40.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.41.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.42.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:compass:1.42.1:*:*:*:*:*:*:*"], "vendor": "MongoDB Inc", "product": "MongoDB Compass", "versions": [{"status": "affected", "version": "0", "lessThan": "1.42.2", "versionType": "custom"}], "defaultStatus": "unaffected"}], "datePublic": "2024-07-01T14:56:00.000Z", "references": [{"url": "https://jira.mongodb.org/browse/COMPASS-7496"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection settings with the usage of ejson shell parser in Compass' connection handling. This issue affects MongoDB Compass versions prior to version 1.42.2", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection settings with the usage of ejson shell parser in Compass' connection handling. This issue affects MongoDB Compass versions prior to version 1.42.2</span><br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-20", "description": "CWE-20: Improper Input Validation"}]}], "providerMetadata": {"orgId": "a39b4221-9bd0-4244-95fc-f3e2e07f1deb", "shortName": "mongodb", "dateUpdated": "2024-07-01T14:57:31.704Z"}}}, "cveMetadata": {"cveId": "CVE-2024-6376", "state": "PUBLISHED", "dateUpdated": "2024-08-01T21:33:05.431Z", "dateReserved": "2024-06-27T07:55:22.098Z", "assignerOrgId": "a39b4221-9bd0-4244-95fc-f3e2e07f1deb", "datePublished": "2024-07-01T14:57:31.704Z", "assignerShortName": "mongodb"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mongodb:compass:*:*:*:*:*:*:*:*", "matchCriteriaId": "2C0CC548-DDB4-4527-AEBC-1993B3E39EDA", "versionEndExcluding": "1.42.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection settings with the usage of ejson shell parser in Compass' connection handling. This issue affects MongoDB Compass versions prior to version 1.42.2"}, {"lang": "es", "value": "MongoDB Compass puede ser susceptible a la inyecci\u00f3n de c\u00f3digo debido a una configuraci\u00f3n insuficiente de protecci\u00f3n de la zona de pruebas con el uso del analizador de shell ejson en el manejo de conexiones de Compass. Este problema afecta a las versiones de MongoDB Compass anteriores a la versi\u00f3n 1.42.2"}], "id": "CVE-2024-6376", "lastModified": "2024-11-21T09:49:31.510", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 5.9, "source": "cna@mongodb.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-07-01T15:15:17.673", "references": [{"source": "cna@mongodb.com", "tags": ["Issue Tracking", "Patch", "Vendor Advisory"], "url": "https://jira.mongodb.org/browse/COMPASS-7496"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Patch", "Vendor Advisory"], "url": "https://jira.mongodb.org/browse/COMPASS-7496"}], "sourceIdentifier": "cna@mongodb.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "cna@mongodb.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}