Security Advisory

CVE-2015-4411

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-20 16:24:22

Last updated 2024-08-06 06:11:12

Assigner mitre

State PUBLISHED

Description

The Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4 as used in rubygem-moped allows remote attackers to cause a denial of service (worker resource consumption) via a crafted string. NOTE: This issue is due to an incomplete fix to CVE-2015-4410.

← Browse all CVEs View on cve.org ↗