Filter
AND
-Infinity
0
Trending
MongoDB CompassMongoDB Compass may be susceptible to local privilege escalation in Windows
7.5
First published (updated )
npm/mongodbSome MongoDB Drivers may publish events containing authentication-related data to a command listener configured by an application
7.5
First published (updated )
MongoDBMongoDB Server may allow successful untrusted connection
8.8
First published (updated )
MongoDB Ops ManagerPrivilege Escalation for Project Owner and Project User Admin Roles in Ops Manager
7.2
First published (updated )
MongoDBCertificate validation issue in MongoDB Server running on Windows or macOS
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-0437MongoDB client C Driver may infinitely loop when validating certain BSON input data
7.5
First published (updated )
MongoDB CompassInsufficient validation of external input in Compass may enable MITM attacks
7.1
EPSS
0.04%
First published (updated )
ubuntu/pymongoOut-of-bounds read in bson module of PyMongo
8.1
EPSS
0.09%
First published (updated )
MongoDB ServerMongoDB Server may have unexpected application behaviour due to invalid BSON
7.5
First published (updated )
MongoDBDenial of Service and Data Integrity vulnerability in features command
7.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MongoDBAccessing Untrusted Directory May Allow Local Privilege Escalation
7.8
EPSS
0.04%
First published (updated )
MongoDB Ops ManagerPotential privilege escalation in Ops Manager API
8.1
First published (updated )
MongoDB CompassLocal privilege escalation in MongoDB Compass for Windows
7.8
First published (updated )
MongoDBDenial of Service when processing malformed Role names
7.5
First published (updated )
MongoDBDenial of service via malformed network packet
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MongoDBLarge aggregation pipelines with a specific stage can crash mongod under default configuration
7.5
First published (updated )
MongoDBAuthentication bypass when using LDAP authentication in MongoDB Enterprise Server
8.1
First published (updated )
FedoraThe Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4 as used in rubygem-moped al…
7.5
First published (updated )
MongoDBmongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a denial …
7.5
First published (updated )
MongoDBIn MongoDB libbson 1.7.0, the bson_iter_codewscope function in bson-iter.c miscalculates a bson_utf8…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MongoDBThe skyring-setup command creates random password for mongodb skyring database but it writes passwor…
7
First published (updated )
redhat/libbson_bson_iter_next_internal in bson-iter.c in libbson 1.12.0, as used in MongoDB mongo-c-driver and oth…
8.1
First published (updated )
npm/bsonThe MongoDB bson JavaScript module (also known as js-bson) versions 0.5.0 to 1.0.x before 1.0.5 is v…
7.5
First published (updated )
MongoDBCode execution on Windows via OpenSSL engine injection
8.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MongoDB C# DriverDeserializing compromised object with MongoDB .NET/C# Driver may cause remote code execution
7.2
First published (updated )
MongoDB Atlas Kubernetes OperatorSecret logging may occur in debug mode of Atlas Operator
7.5
First published (updated )