vulnerability
Red Hat: CVE-2024-5629: python-pymongo: Out-of-bounds read in bson module (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:H/Au:N/C:P/I:N/A:P) | Jun 5, 2024 | Jun 5, 2025 | Feb 19, 2026 |
Severity
4
CVSS
(AV:N/AC:H/Au:N/C:P/I:N/A:P)
Published
Jun 5, 2024
Added
Jun 5, 2025
Modified
Feb 19, 2026
Description
An out-of-bounds read in the 'bson' module of PyMongo 4.6.2 or earlier allows deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memory.
Solutions
redhat-upgrade-python-nose-docsredhat-upgrade-python-pymongo-debuginforedhat-upgrade-python-pymongo-debugsourceredhat-upgrade-python-pymongo-docredhat-upgrade-python-sqlalchemy-docredhat-upgrade-python-virtualenv-docredhat-upgrade-python3-bsonredhat-upgrade-python3-bson-debuginforedhat-upgrade-python3-distroredhat-upgrade-python3-docsredhat-upgrade-python3-docutilsredhat-upgrade-python3-noseredhat-upgrade-python3-pygmentsredhat-upgrade-python3-pymongoredhat-upgrade-python3-pymongo-debuginforedhat-upgrade-python3-pymongo-gridfsredhat-upgrade-python3-pymysqlredhat-upgrade-python3-scipyredhat-upgrade-python3-scipy-debuginforedhat-upgrade-python3-sqlalchemyredhat-upgrade-python3-virtualenvredhat-upgrade-python3-wheelredhat-upgrade-python3-wheel-wheelredhat-upgrade-python36redhat-upgrade-python36-debugredhat-upgrade-python36-develredhat-upgrade-python36-rpm-macrosredhat-upgrade-scipy-debugsource
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.