Vulnerabilities (CVE)

Filtered by vendor Mongodb Subscribe
Filtered by product Go Driver
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-20329 1 Mongodb 1 Go Driver 2024-11-21 4.0 MEDIUM 6.8 MEDIUM
Specific cstrings input may not be properly validated in the MongoDB Go Driver when marshalling Go objects into BSON. A malicious user could use a Go object with specific string to potentially inject additional fields into marshalled documents. This issue affects all MongoDB GO Drivers prior to and including 1.5.0.