Vulnerabilities

CVE-2021-20329

by Fred · 10/06/2021

Specific cstrings input may not be properly validated in the MongoDB Go Driver when marshalling Go objects into BSON. A malicious user could use a Go object with specific string to potentially inject additional fields into marshalled documents. This issue affects all MongoDB GO Drivers up to (and including) 1.5.0.

Date published : 2021-06-10

https://github.com/mongodb/mongo-go-driver/releases/tag/v1.5.1

Similar

Tags: Cybersecurity Alert