VDB
RHSA-2023%3A4730
RHSA-2023%3A4730
PUBLISHED
CVSS 6.5 MEDIUM
A flaw was found in Mongo. Specific cstrings input may not be properly validated in the MongoDB Go Driver when marshaling Go objects into BSON. This flaw allows a malicious user to use a Go object with a specific string to inject additional fields into marshaled documents.
Risk Scores
CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | openshift-tech-preview/metallb-rhel8@sha256:2305918e859d2ea4d609c38946d4612009e72201bce4c5a8f86ac08648d1e08a_ppc64le as a component of Red Hat OpenShift Container Platform 4.13 | openshift-tech-preview/metallb-rhel8@sha256:2305918e859d2ea4d609c38946d4612009e72201bce4c5a8f86ac08648d1e08a_ppc64le, *, * |
| Red Hat | openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:aa5921f7d1ee6166e76f713c9bab38cd6eb9e8baa26c577bc149b800d1a194a1_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:aa5921f7d1ee6166e76f713c9bab38cd6eb9e8baa26c577bc149b800d1a194a1_arm64, openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:aa5921f7d1ee6166e76f713c9bab38cd6eb9e8baa26c577bc149b800d1a194a1_arm64, openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:aa5921f7d1ee6166e76f713c9bab38cd6eb9e8baa26c577bc149b800d1a194a1_arm64 |
| Red Hat | openshift4/ose-clusterresourceoverride-rhel8@sha256:a3a2c4cfaf86560eb2deb06aa27beea9c41958a90afbbe5f498782d352e0b4ef_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | *, openshift4/ose-clusterresourceoverride-rhel8@sha256:a3a2c4cfaf86560eb2deb06aa27beea9c41958a90afbbe5f498782d352e0b4ef_arm64, openshift4/ose-clusterresourceoverride-rhel8@sha256:a3a2c4cfaf86560eb2deb06aa27beea9c41958a90afbbe5f498782d352e0b4ef_arm64 |
| Red Hat | openshift4/ose-cluster-capacity@sha256:1d9dc38e20e26508a31038c444b2fc1f00a4a0828e7cdff06a2c6744ed6b0be7_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/ose-cluster-capacity@sha256:1d9dc38e20e26508a31038c444b2fc1f00a4a0828e7cdff06a2c6744ed6b0be7_arm64, *, * |
| Red Hat | openshift4/ose-helm-operator@sha256:63c41d05e82662e9ccfc3711522315df6d3f0ffa4d1874eddffa9e923dde9aa2_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | *, *, openshift4/ose-helm-operator@sha256:63c41d05e82662e9ccfc3711522315df6d3f0ffa4d1874eddffa9e923dde9aa2_arm64 |
| Red Hat | openshift4/ose-local-storage-mustgather-rhel8@sha256:1e9addbb6630af75443efbff26078092516fe884d749f583a1edde340d7a895d_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/ose-local-storage-mustgather-rhel8@sha256:1e9addbb6630af75443efbff26078092516fe884d749f583a1edde340d7a895d_arm64, *, openshift4/ose-local-storage-mustgather-rhel8@sha256:1e9addbb6630af75443efbff26078092516fe884d749f583a1edde340d7a895d_arm64 |
| Red Hat | openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cbde927a56df05bb3e68432a144c1c83c1438b3b20aaa3c1efbfb6eab24a8358_s390x as a component of Red Hat OpenShift Container Platform 4.13 | *, openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cbde927a56df05bb3e68432a144c1c83c1438b3b20aaa3c1efbfb6eab24a8358_s390x, openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cbde927a56df05bb3e68432a144c1c83c1438b3b20aaa3c1efbfb6eab24a8358_s390x |
| Red Hat | openshift4/ingress-node-firewall-rhel8-operator@sha256:a54ca93e525b07369bfb1658c52f2a1f0d8410d252dd5bd377e6ecf82cfe1b92_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/ingress-node-firewall-rhel8-operator@sha256:a54ca93e525b07369bfb1658c52f2a1f0d8410d252dd5bd377e6ecf82cfe1b92_arm64, openshift4/ingress-node-firewall-rhel8-operator@sha256:a54ca93e525b07369bfb1658c52f2a1f0d8410d252dd5bd377e6ecf82cfe1b92_arm64, openshift4/ingress-node-firewall-rhel8-operator@sha256:a54ca93e525b07369bfb1658c52f2a1f0d8410d252dd5bd377e6ecf82cfe1b92_arm64 |
| Red Hat | openshift4/frr-rhel8@sha256:2ddd4cb70a4072e7476db256cd74104aadd78c59bf481b37b1c0880ff016e9fd_s390x as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/frr-rhel8@sha256:2ddd4cb70a4072e7476db256cd74104aadd78c59bf481b37b1c0880ff016e9fd_s390x, *, openshift4/frr-rhel8@sha256:2ddd4cb70a4072e7476db256cd74104aadd78c59bf481b37b1c0880ff016e9fd_s390x |
| Red Hat | openshift4/ose-sriov-network-webhook@sha256:432426c91257ed1b59d36ebc029b4702da4e0e6a61a74961e5e24543a0c24859_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | *, *, * |
| Red Hat | openshift4/ose-cloud-event-proxy-rhel8@sha256:89452c3b59b8bb77345959e118a47ed16f5b93e72fcc7d2c96d03d0321d89e6c_ppc64le as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/ose-cloud-event-proxy-rhel8@sha256:89452c3b59b8bb77345959e118a47ed16f5b93e72fcc7d2c96d03d0321d89e6c_ppc64le, *, openshift4/ose-cloud-event-proxy-rhel8@sha256:89452c3b59b8bb77345959e118a47ed16f5b93e72fcc7d2c96d03d0321d89e6c_ppc64le |
| Red Hat | openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:58a7c4212f3d8fa1e74ef06e984437b8970cdc097af552f7367000e1b4d6a478_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | *, openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:58a7c4212f3d8fa1e74ef06e984437b8970cdc097af552f7367000e1b4d6a478_arm64, openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:58a7c4212f3d8fa1e74ef06e984437b8970cdc097af552f7367000e1b4d6a478_arm64 |
| Red Hat | openshift4/ingress-node-firewall-rhel8-operator@sha256:a54ca93e525b07369bfb1658c52f2a1f0d8410d252dd5bd377e6ecf82cfe1b92_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | *, *, * |
| Red Hat | openshift4/ose-egress-http-proxy@sha256:985a7c3c247761ecdf485b558cfc0aa14601833474b5cb36d69a6804fd3e83e6_ppc64le as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/ose-egress-http-proxy@sha256:985a7c3c247761ecdf485b558cfc0aa14601833474b5cb36d69a6804fd3e83e6_ppc64le, *, * |
| Red Hat | openshift4/ose-ptp-operator@sha256:d96d9b1618c1be83ac61a90280d2907533b5fae26cd91165315090f162facd93_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/ose-ptp-operator@sha256:d96d9b1618c1be83ac61a90280d2907533b5fae26cd91165315090f162facd93_arm64, openshift4/ose-ptp-operator@sha256:d96d9b1618c1be83ac61a90280d2907533b5fae26cd91165315090f162facd93_arm64, openshift4/ose-ptp-operator@sha256:d96d9b1618c1be83ac61a90280d2907533b5fae26cd91165315090f162facd93_arm64 |
| Red Hat | openshift4/ose-local-storage-mustgather-rhel8@sha256:508cff3ef8517894e6ae2b6bd0c66d8037333368be492da953fa201943fb4ea5_s390x as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/ose-local-storage-mustgather-rhel8@sha256:508cff3ef8517894e6ae2b6bd0c66d8037333368be492da953fa201943fb4ea5_s390x, openshift4/ose-local-storage-mustgather-rhel8@sha256:508cff3ef8517894e6ae2b6bd0c66d8037333368be492da953fa201943fb4ea5_s390x, openshift4/ose-local-storage-mustgather-rhel8@sha256:508cff3ef8517894e6ae2b6bd0c66d8037333368be492da953fa201943fb4ea5_s390x |
| Red Hat | openshift4/metallb-rhel8-operator@sha256:c3622aa93d8da3c638ebbd3af1348c257249aca107d30993cf666850ee9f494a_s390x as a component of Red Hat OpenShift Container Platform 4.13 | *, openshift4/metallb-rhel8-operator@sha256:c3622aa93d8da3c638ebbd3af1348c257249aca107d30993cf666850ee9f494a_s390x, openshift4/metallb-rhel8-operator@sha256:c3622aa93d8da3c638ebbd3af1348c257249aca107d30993cf666850ee9f494a_s390x |
| Red Hat | openshift4/ose-cluster-kube-descheduler-operator@sha256:a4fd8e15ccb13f0ef4afa46ece4269d4f17e893de404855bae22ec626da60b32_amd64 as a component of Red Hat OpenShift Container Platform 4.13 | *, openshift4/ose-cluster-kube-descheduler-operator@sha256:a4fd8e15ccb13f0ef4afa46ece4269d4f17e893de404855bae22ec626da60b32_amd64, openshift4/ose-cluster-kube-descheduler-operator@sha256:a4fd8e15ccb13f0ef4afa46ece4269d4f17e893de404855bae22ec626da60b32_amd64 |
| Red Hat | openshift4/ose-cloud-event-proxy-rhel8@sha256:69b5e0698849cbd28e18e90ec7c16559e0e47394a51e1e4002fc3a8de6424521_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/ose-cloud-event-proxy-rhel8@sha256:69b5e0698849cbd28e18e90ec7c16559e0e47394a51e1e4002fc3a8de6424521_arm64, *, * |
| Red Hat | openshift4/metallb-rhel8-operator@sha256:1c0776329f175ca96950225d3301859e75e4dc955cc3b6279ccebc92c0529028_arm64 as a component of Red Hat OpenShift Container Platform 4.13 | openshift4/metallb-rhel8-operator@sha256:1c0776329f175ca96950225d3301859e75e4dc955cc3b6279ccebc92c0529028_arm64, openshift4/metallb-rhel8-operator@sha256:1c0776329f175ca96950225d3301859e75e4dc955cc3b6279ccebc92c0529028_arm64, * |
…and 316 more
Timeline
- Aug 30, 2023 CVE Published
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Jun 23, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2023:4730 advisory
- https://access.redhat.com/security/updates/classification/#moderate advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1971033 issue
- https://issues.redhat.com/browse/OCPBUGS-14954 advisory
- https://issues.redhat.com/browse/OCPBUGS-15830 advisory
- https://issues.redhat.com/browse/OCPBUGS-17425 advisory
- https://issues.redhat.com/browse/OCPBUGS-17525 advisory
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4730.json advisory
- https://access.redhat.com/security/cve/CVE-2021-20329 advisory
- https://www.cve.org/CVERecord?id=CVE-2021-20329 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-20329 advisory
- https://github.com/advisories/GHSA-f6mq-5m25-4r72 advisory
- https://github.com/mongodb/mongo-go-driver/releases/tag/v1.5.1 advisory