CVE-2024-8654

Summary

MongoDB Server may access non-initialized region of memory leading to unexpected behaviour when zero arguments are called in internal aggregation stage. This issue affected MongoDB Server v6.0 version 6.0.3.

Affected Software

VendorProductVersion RangeStatus
MongoDB IncMongoDB Server6.0.3affected

Weaknesses

  • CWE-908: CWE-908: Use of Uninitialized Resource

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References