CVE-2024-3371 - CERT CVE

  1. CVE-2024-3371

ID CVE-2024-3371
Sažetak MongoDB Compass may accept and use insufficiently validated input from an untrusted external source. This may cause unintended application behavior, including data disclosure and enabling attackers to impersonate users. This issue affects MongoDB Compass versions 1.35.0 to 1.42.0.
Reference
CVSS
Base: 7.1
Impact: 5.5
Exploitability:1.6
Pristup
VektorSloženostAutentikacija
NETWORK HIGH LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH LOW
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L
Zadnje važnije ažuriranje 26-04-2024 - 15:15
Objavljeno 24-04-2024 - 17:15