CVE-2024-6383

MEDIUM Year: 2024
CVSS v3 Score
5.3
Medium
Weakness Type
CWE-122
View all →

Vulnerability Description

The bson_string_append function in MongoDB C Driver may be vulnerable to a buffer overflow where the function might attempt to allocate too small of buffer and may lead to memory corruption of neighbouring heap memory. This issue affects libbson versions prior to 1.27.1

Related Vulnerabilities

CVE-2018-1120

MEDIUM
CVSS:5.3(Medium)

A flaw was found affecting the Linux kernel before version 4.17. By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker can cau...

CWE-1222018

CVE-2018-7519

MEDIUM
CVSS:5.3(Medium)

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a heap-based buffer overflow.

CWE-1222018

CVE-2022-0713

MEDIUM
CVSS:5.3(Medium)

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4.

CWE-1222022

CVE-2022-1437

MEDIUM
CVSS:5.3(Medium)

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read...

CWE-1222022

CVE-2024-21596

MEDIUM
CVSS:5.3(Medium)

A Heap-based Buffer Overflow vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network based attacker to cause a Denial of...

CWE-1222024

CVE-2024-29013

MEDIUM
CVSS:5.3(Medium)

Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote attacker to cause Denial of Service (DoS) via memcpy function.

CWE-1222024