Releases183
Frequency1 month 2 hours
Last Release
A bson parser for node.js and the browser

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
= 3.0.37.5 HIGH

BSON injection vulnerability in the legal? function in BSON (bson-ruby) gem before 3.0.4 for Ruby allows remote attackers to cause a denial of service (resource consumption) or inject arbitrary data via a crafted string.