<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Wed Feb 07 21:48:20 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[CSHARP-4475] Add an AllowedTypes filter to ObjectSerializer</title>
                <link>https://jira.mongodb.org/browse/CSHARP-4475</link>
                <project id="10041" key="CSHARP">C# Driver</project>
                    <description>&lt;div class=&quot;panel&quot; style=&quot;background-color: #eeeeee;border-color: #cccccc;border-width: 1px;&quot;&gt;&lt;div class=&quot;panelHeader&quot; style=&quot;border-bottom-width: 1px;border-bottom-color: #cccccc;background-color: #6cb33f;&quot;&gt;&lt;b&gt;CVE-2022-48282&lt;/b&gt;&lt;/div&gt;&lt;div class=&quot;panelContent&quot; style=&quot;background-color: #eeeeee;&quot;&gt;
&lt;p&gt;&lt;b&gt;Title:&lt;/b&gt;&lt;/p&gt;

&lt;p&gt;Deserializing compromised object with MongoDB .NET/C# Driver may cause remote code execution&lt;/p&gt;

&lt;p&gt;&lt;b&gt;CVE ID:&lt;/b&gt;&lt;/p&gt;

&lt;p&gt;CVE-2022-48282&lt;/p&gt;

&lt;p&gt;&lt;b&gt;Description:&lt;/b&gt;&lt;br/&gt;
Under very specific circumstances (see Required configuration section below), a privileged user is able to cause arbitrary code to be executed which may cause further disruption to services. This is specific to applications written in C#. This affects all MongoDB .NET/C# Driver versions prior to and including v2.18.0&lt;br/&gt;
&lt;b&gt;CVSS Score:&lt;/b&gt;&lt;/p&gt;

&lt;p&gt;This issue&apos;s CVSS:3.1 severity is scored at 6.6 using the following scoring metrics:&lt;br/&gt;
CVSS:3.1/&lt;a href=&quot;https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H&amp;amp;version=3.1&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;&lt;b&gt;All Affected Product Versions:&lt;/b&gt;&lt;/p&gt;

&lt;p&gt;All MongoDB .NET/C# Driver versions prior to and including v2.18.0&lt;/p&gt;

&lt;p&gt;&lt;b&gt;CWE:&lt;/b&gt;&lt;/p&gt;

&lt;p&gt;CWE - 502 : Deserialization of Untrusted Data&lt;/p&gt;

&lt;p&gt;&lt;b&gt;Is a Fixed Version Available?:&lt;/b&gt;&lt;/p&gt;

&lt;p&gt;MongoDB .NET/C# Driver v2.19.0&lt;/p&gt;

&lt;p&gt;&lt;b&gt;How was the Issue Found? (Internally/Externally):&lt;/b&gt;&lt;/p&gt;

&lt;p&gt;Externally&lt;/p&gt;

&lt;p&gt;&lt;b&gt;Internal Jira Reference:&lt;/b&gt;&lt;/p&gt;

&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/browse/CSHARP-4475&quot; title=&quot;Add an AllowedTypes filter to ObjectSerializer&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CSHARP-4475&quot;&gt;&lt;del&gt;CSHARP-4475&lt;/del&gt;&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;&lt;b&gt;Required Configuration for Exposure (Optional):&lt;/b&gt;&lt;br/&gt;
Application must written in C# taking arbitrary data from users and serializing data using _t without any validation AND&lt;br/&gt;
Application must be running on a Windows host using the full .NET Framework, not .NET Core AND&lt;br/&gt;
Application must have domain model class with a property/field explicitly of type System.Object or a collection of type System.Object (against MongoDB best practice) AND&lt;br/&gt;
Malicious attacker must have unrestricted insert access to target database to add a _t discriminator.&lt;br/&gt;
&lt;b&gt;Credits&lt;/b&gt;&#160; Jonathan Birch of Microsoft Office Security&lt;/p&gt;
&lt;/div&gt;&lt;/div&gt;</description>
                <environment></environment>
        <key id="2225098">CSHARP-4475</key>
            <summary>Add an AllowedTypes filter to ObjectSerializer</summary>
                <type id="4" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14710&amp;avatarType=issuetype">Improvement</type>
                                            <priority id="10300" iconUrl="https://jira.mongodb.org/images/icons/priorities/medium.svg">Unknown</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="9">Done</resolution>
                                        <assignee username="robert@mongodb.com">Robert Stam</assignee>
                                    <reporter username="robert@mongodb.com">Robert Stam</reporter>
                        <labels>
                    </labels>
                <created>Thu, 5 Jan 2023 17:13:59 +0000</created>
                <updated>Wed, 24 Jan 2024 15:19:22 +0000</updated>
                            <resolved>Thu, 26 Jan 2023 04:55:51 +0000</resolved>
                                    <version>2.18.0</version>
                                    <fixVersion>2.19.0</fixVersion>
                                    <component>Serialization</component>
                                        <votes>0</votes>
                                    <watches>3</watches>
                                                                                                                <comments>
                            <comment id="5218880" author="xgen-internal-githook" created="Tue, 21 Feb 2023 23:28:14 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;James Kovacs&apos;, &apos;email&apos;: &apos;jkovacs@post.harvard.edu&apos;, &apos;username&apos;: &apos;JamesKovacs&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/CSHARP-4475&quot; title=&quot;Add an AllowedTypes filter to ObjectSerializer&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CSHARP-4475&quot;&gt;&lt;del&gt;CSHARP-4475&lt;/del&gt;&lt;/a&gt;: Added mention of CVE-2022-48282 to the release notes.&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo-csharp-driver/commit/754b7464d9395d04e10620fb763c450baac21dea&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo-csharp-driver/commit/754b7464d9395d04e10620fb763c450baac21dea&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5141797" author="xgen-internal-githook" created="Thu, 26 Jan 2023 04:55:07 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;rstam&apos;, &apos;email&apos;: &apos;robert@robertstam.org&apos;, &apos;username&apos;: &apos;rstam&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/CSHARP-4475&quot; title=&quot;Add an AllowedTypes filter to ObjectSerializer&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CSHARP-4475&quot;&gt;&lt;del&gt;CSHARP-4475&lt;/del&gt;&lt;/a&gt;: Add an AllowedTypes filter to ObjectSerializer.&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo-csharp-driver/commit/790f1233b360b1638fdec17c73a2cb67710b488e&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo-csharp-driver/commit/790f1233b360b1638fdec17c73a2cb67710b488e&lt;/a&gt;&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10012">
                    <name>Related</name>
                                            <outwardlinks description="related to">
                                        <issuelink>
            <issuekey id="2243961">CSHARP-4495</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2268290">CSHARP-4534</issuekey>
        </issuelink>
                            </outwardlinks>
                                                                <inwardlinks description="is related to">
                                                        </inwardlinks>
                                    </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                        <customfield id="customfield_10011" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Backwards Compatibility</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10011"><![CDATA[Minor Change]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|i17rlc:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            </customfields>
    </item>
</channel>
</rss>