Filter
AND

MongoDB MongoDBAccessing Untrusted Directory May Allow Local Privilege Escalation

7.8
EPSS
0.04%
First published (updated )

ubuntu/pymongoOut-of-bounds read in bson module of PyMongo

8.1
EPSS
0.09%
First published (updated )

Mongodb C DriverMongoDB client C Driver may infinitely loop when validating certain BSON input data

7.5
First published (updated )

MongoDB Atlas Kubernetes OperatorSecret logging may occur in debug mode of Atlas Operator

7.5
First published (updated )

Mongodb Node.jsSome MongoDB Drivers may publish events containing authentication-related data to a command listener configured by an application

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

MongoDB MongoDBCertificate validation issue in MongoDB Server running on Windows or macOS

7.5
First published (updated )

Mongodb Ops Manager ServerPrivilege Escalation for Project Owner and Project User Admin Roles in Ops Manager

7.2
First published (updated )

Mongodb C\# DriverDeserializing compromised object with MongoDB .NET/C# Driver may cause remote code execution

7.2
First published (updated )

MongoDB MongoDBLarge aggregation pipelines with a specific stage can crash mongod under default configuration

7.5
First published (updated )

MongoDB MongoDBDenial of Service and Data Integrity vulnerability in features command

7.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

MongoDB CompassLocal privilege escalation in MongoDB Compass for Windows

7.8
First published (updated )

MongoDB MongoDBDenial of service via malformed network packet

7.5
First published (updated )

MongoDB Ops ManagerPotential privilege escalation in Ops Manager API

8.1
First published (updated )

MongoDB MongoDBDenial of Service when processing malformed Role names

7.5
First published (updated )

MongoDB MongoDBCode execution on Windows via OpenSSL engine injection

8.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

MongoDB MongoDBAuthorization session conflation

7.1
First published (updated )

MongoDB MongoDBAuthentication bypass when using LDAP authentication in MongoDB Enterprise Server

8.1
First published (updated )

redhat/libbson_bson_iter_next_internal in bson-iter.c in libbson 1.12.0, as used in MongoDB mongo-c-driver and oth…

8.1
First published (updated )

Mongodb Js-bsonThe MongoDB bson JavaScript module (also known as js-bson) versions 0.5.0 to 1.0.x before 1.0.5 is v…

7.5
First published (updated )

MongoDB MongoDBThe skyring-setup command creates random password for mongodb skyring database but it writes passwor…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

MongoDB MongoDBIn MongoDB libbson 1.7.0, the bson_iter_codewscope function in bson-iter.c miscalculates a bson_utf8…

7.5
First published (updated )

MongoDB MongoDBmongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a denial …

7.5
First published (updated )

Fedoraproject FedoraThe Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4 as used in rubygem-moped al…

7.5
First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203