CVE-2024-3371

Description

MongoDB Compass may accept and use insufficiently validated input from an untrusted external source. This may cause unintended application behavior, including data disclosure and enabling attackers to impersonate users. This issue affects MongoDB Compass versions 1.35.0 to 1.42.0.

References

https://jira.mongodb.org/browse/COMPASS-7260

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3