nvd-json-data-feeds/CVE-2024/CVE-2024-63xx/CVE-2024-6382.json

{
  "id": "CVE-2024-6382",
  "sourceIdentifier": "cna@mongodb.com",
  "published": "2024-07-02T18:15:04.337",
  "lastModified": "2024-07-02T18:15:04.337",
  "vulnStatus": "Received",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Incorrect handling of certain string inputs may result in MongoDB Rust driver constructing unintended server commands. This may cause unexpected application behavior including data modification. This issue affects MongoDB Rust Driver 2.0 versions prior to 2.8.2"
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "cna@mongodb.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "LOW",
          "userInteraction": "NONE",
          "scope": "CHANGED",
          "confidentialityImpact": "NONE",
          "integrityImpact": "LOW",
          "availabilityImpact": "LOW",
          "baseScore": 6.4,
          "baseSeverity": "MEDIUM"
        },
        "exploitabilityScore": 3.1,
        "impactScore": 2.7
      }
    ]
  },
  "weaknesses": [
    {
      "source": "cna@mongodb.com",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-228"
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://jira.mongodb.org/browse/RUST-1881",
      "source": "cna@mongodb.com"
    }
  ]
}
Auto-Update: 2024-07-02T20:00:31.367819+00:00 2024-07-02 20:03:23 +00:00			`{`
			`"id": "CVE-2024-6382",`
			`"sourceIdentifier": "cna@mongodb.com",`
			`"published": "2024-07-02T18:15:04.337",`
			`"lastModified": "2024-07-02T18:15:04.337",`
			`"vulnStatus": "Received",`
			`"cveTags": [],`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "Incorrect handling of certain string inputs may result in MongoDB Rust driver constructing unintended server commands. This may cause unexpected application behavior including data modification. This issue affects MongoDB Rust Driver 2.0 versions prior to 2.8.2"`
			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV31": [`
			`{`
			`"source": "cna@mongodb.com",`
			`"type": "Secondary",`
			`"cvssData": {`
			`"version": "3.1",`
			`"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L",`
			`"attackVector": "NETWORK",`
			`"attackComplexity": "LOW",`
			`"privilegesRequired": "LOW",`
			`"userInteraction": "NONE",`
			`"scope": "CHANGED",`
			`"confidentialityImpact": "NONE",`
			`"integrityImpact": "LOW",`
			`"availabilityImpact": "LOW",`
			`"baseScore": 6.4,`
			`"baseSeverity": "MEDIUM"`
			`},`
			`"exploitabilityScore": 3.1,`
			`"impactScore": 2.7`
			`}`
			`]`
			`},`
			`"weaknesses": [`
			`{`
			`"source": "cna@mongodb.com",`
			`"type": "Secondary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "CWE-228"`
			`}`
			`]`
			`}`
			`],`
			`"references": [`
			`{`
			`"url": "https://jira.mongodb.org/browse/RUST-1881",`
			`"source": "cna@mongodb.com"`
			`}`
			`]`
			`}`