Mongodb · Mongo-Python-Driver · CVE-2013-2132
**Name of the Vulnerable Software and Affected Versions**
mongo-python-driver versions prior to 2.5.2
**Description**
The issue allows context-dependent attackers to cause a denial of service, resulting in a NULL pointer dereference and crash. This is related to the decoding of an "invalid DBRef" in the bson/ cbsonmodule.c file.
**Recommendations**
For versions prior to 2.5.2, update to version 2.5.2 or later to resolve the issue. As a temporary workaround, consider restricting the decoding of DBRef objects to minimize the risk of exploitation.