Vulnerabilities > Mongodb > Bson > 2.1.1

DATE CVE VULNERABILITY TITLE RISK
2020-02-20 CVE-2015-4411 Resource Exhaustion vulnerability in multiple products
The Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4 as used in rubygem-moped allows remote attackers to cause a denial of service (worker resource consumption) via a crafted string.
network
low complexity
mongodb fedoraproject CWE-400
5.0