PyMongo — CVE history (PyPI)
PyMongo
1 CVEs affect the PyMongo PyPI package (highest CVSS 4.7). Latest disclosed: 2024-06-05. Full CVE history sourced from NVD.
Summary
- Package
PyMongo(PyPI)- Total CVEs
1- Actively exploited (CISA KEV)
- 0
- Highest CVSS
4.7- Latest disclosed
- 2024-06-05
Recent CVEs (top 1)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5629 | Medium | 4.7 | — | 2024-06-05 | An out-of-bounds read in the 'bson' module of PyMongo 4.6.2 or earlier allows deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memory. |
All-time worst (top 1 by CVSS)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5629 | Medium | 4.7 | — | 2024-06-05 | An out-of-bounds read in the 'bson' module of PyMongo 4.6.2 or earlier allows deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memory. |