Description
Incorrect parsing of certain JSON input may result in js-bson not correctly serializing BSON. This may cause unexpected application behaviour including data disclosure. This issue affects: MongoDB Inc. js-bson library version 1.1.3 and prior to.
Remediation
References
https://github.com/mongodb/js-bson/releases/tag/v1.1.4
Related Vulnerabilities
CVE-2022-39299 Vulnerability in npm package @node-saml/node-saml
CVE-2021-21297 Vulnerability in npm package @node-red/runtime
CVE-2022-31127 Vulnerability in npm package next-auth
CVE-2023-31544 Vulnerability in maven package org.opencms:opencms-core
CVE-2022-31367 Vulnerability in npm package strapi-plugin-content-type-builder