OsVault/npm/bson
npm3 critical

bson

7 known vulnerabilities · 3 critical · 2 high

CVE-2020-7610CRITICAL

Deserialization of Untrusted Data in bson

Published May 7, 2021
CVE-2019-2391MEDIUM

Deserialization of Untrusted Data in bson

Published Feb 10, 2022
CVE-2018-13863HIGH

js-bson vulnerable to REDoS

Published Sep 17, 2018
CVE-2022-39396CRITICAL

Remote code execution via MongoDB BSON parser through prototype pollution

Published Nov 8, 2022
CVE-2019-19729HIGH

bson-objectid contains Improper input validation

Published May 24, 2022
CVE-2023-36475CRITICAL

Parse Server vulnerable to remote code execution via MongoDB BSON parser through prototype pollution

Published Jun 30, 2023
MAL-2026-4591

Malicious code in jsonbson (npm)

Published May 20, 2026
Check your entire dependency tree at onceRun dependency scan →