Wiz
Vulnerability DatabaseCVE-2021-20329

CVE-2021-20329
Red Hat Enterprise Linux CoreOS (RHCOS) vulnerability analysis and mitigation

Overview

CVE-2021-20329 is a security vulnerability discovered in the MongoDB Go Driver affecting all versions up to and including 1.5.0. The vulnerability was related to improper validation of specific cstrings input when marshalling Go objects into BSON. The issue was disclosed and addressed with the release of MongoDB Go Driver version 1.5.1 (MongoDB Release).

Technical details

The vulnerability stems from the BSON marshalling system's incorrect handling of null bytes embedded in BSON key names and the pattern/options fields of a BSON regex value. The issue has a CVSS v3.1 score of 6.8 (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N), indicating moderate severity (MongoDB Release).

Impact

When exploited, this vulnerability could allow a malicious user to potentially inject additional fields into marshalled documents through a Go object with specific string manipulation (MongoDB Release).

Mitigation and workarounds

The vulnerability was fixed in MongoDB Go Driver version 1.5.1. The fix includes proper validation that now correctly identifies and returns an error if there is an embedded null byte in BSON key names or the pattern/options fields of a BSON regex value. Users are strongly recommended to upgrade to version 1.5.1 or later (MongoDB Release).

Additional resources

SourceThis report was generated using AI

Related Red Hat Enterprise Linux CoreOS (RHCOS) vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2025-11561HIGH8.8
  • Rocky LinuxRocky Linux
  • sssd-kcm-debuginfo
NoYesOct 09, 2025
CVE-2025-52565HIGH8.4
  • cAdvisorcAdvisor
  • runc-debuginfo
NoYesNov 06, 2025
CVE-2025-4953HIGH7.4
  • PodmanPodman
  • conmon
NoYesSep 16, 2025
CVE-2025-52881HIGH7.3
  • cAdvisorcAdvisor
  • mesosphere-vsphere-csi
NoYesNov 06, 2025
CVE-2025-31133HIGH7.3
  • cAdvisorcAdvisor
  • crun
NoYesNov 06, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo