Vulnerability CVE-2024-3374
Published: 2024-05-14

Description:
An unauthenticated user can trigger a fatal assertion in the server while generating ftdc diagnostic metrics due to attempting to build a BSON object that exceeds certain memory sizes. This issue affects MongoDB Server v5.0 versions prior to and including 5.0.16 and MongoDB Server v6.0 versions prior to and including 6.0.5.

 References:
https://jira.mongodb.org/browse/SERVER-75601
Copyright 2026, cxsecurity.com

 

Back to Top