mongodb js-bson Vulnerabilities: CVEs, CISA KEV & Security Advisories

Severity and exploitation

How the CVSS severity of mongodb js-bson's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical0

High0

Medium1

Low0

2 additional CVEs have no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

None of mongodb js-bson's CVEs are currently listed in CISA's KEV catalog.

Public exploits

No mongodb js-bson CVEs currently have a tracked public exploit.

Affected versions and CVEs

Browse every mongodb js-bson version named in a CVE, then pick one to see only the CVEs that affect it.

Find a version

3 CVEs

Sort

JS-bson may incorrectly serialise some requests
CVE-2019-2391
Patch
CWE-502
Medium · CVSS 4.2
EPSS 0.4% (60th pct)2020-03-31
Vulnerability · 2020-03-30
CVE-2020-7610
Patch
Unscored
EPSS 0.5% (68th pct)2020-03-30
Vulnerability · 2018-07-10
CVE-2018-13863
Patch
Unscored
EPSS 0.4% (60th pct)2018-07-10

Severity and exploitation