Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

MongoDB ServerImproper neutralization of null bytes may lead to buffer over-reads in MongoDB Server

medium
6.8
First published (updated )
CVE-2024-10921

MongoDBMongoDB Server secondaries may crash due to forced index constraints

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-8305

MongoDBMongoDB Server may access non-initialized region of memory leading to unexpected behaviour

medium
5
EPSS
0.04%
First published (updated )
CVE-2024-8654

MongoDBMongoDB Server binaries may load potentially insecure shared libraries from specific relative paths

medium
6.7
EPSS
0.04%
First published (updated )
CVE-2024-8207

MongoDBBackup files may be downloaded by underprivileged users in MongoDB Enterprise Server

medium
5.3
EPSS
0.05%
First published (updated )
CVE-2024-6384

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

MongoDB C DriverMongoDB C Driver bson_string_append may be vulnerable to a buffer overflow

medium
5.3
EPSS
0.04%
First published (updated )
CVE-2024-6383

MongoDB LibBsonMongoDB C Driver bson_strfreev may be susceptible to integer overflow

medium
4
EPSS
0.04%
First published (updated )
CVE-2024-6381

MongoDBMissing authorization check may lead to shard key refinement

medium
6.5
EPSS
0.05%
First published (updated )
CVE-2024-6375

MongoDB ServerMongoDB Server (mongod) may crash when generating ftdc

medium
5.3
First published (updated )
CVE-2024-3374

Linux Kernelbcachefs: grab s_umount only if snapshotting

medium
5.5
First published (updated )
CVE-2024-26658

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

MongoDB Ops ManagerMongoDB Ops Manager may disclose sensitive information in Diagnostic Archive

medium
5.3
First published (updated )
CVE-2023-0342

MongoDBMongoDB Server (mongod) may crash in response to unexpected requests

medium
6.5
First published (updated )
CVE-2022-24272

MongoDBMongoDB Extension for VS Code may unexpectedly store credentials locally in clear text

medium
5.5
First published (updated )
CVE-2021-32039

MongoDBSpecific replication command with malformed oplog entries can crash secondaries

medium
6.5
First published (updated )
CVE-2021-20330

MongoDBUser may trigger invariant when allowed to send commands directly to shards

medium
6.5
First published (updated )
CVE-2021-32037

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

MongoDB Rust DriverMongoDB Rust Driver may publish events containing authentication-related data to a connection pool event listener configured by an application

medium
4.4
First published (updated )
CVE-2021-20332

MongoDBServer log entry spoofing via newline injection

medium
5.3
First published (updated )
CVE-2021-20333

MongoDB C# DriverMongoDB C# Driver may publish events containing authentication-related data to a command listener configured by an application

medium
4.9
First published (updated )
CVE-2021-20331

MongoDBSpecially crafted query may result in a denial of service of mongod

medium
6.5
First published (updated )
CVE-2021-20326

MongoDB Database ToolsSpecific command line parameter might result in accepting invalid certificate

medium
6.5
First published (updated )
CVE-2020-7924

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM Data Virtualization on Cloud Pak for DataSpecific cstrings input may not be properly validated in the Go Driver

medium
6.8
First published (updated )
CVE-2021-20329

MongoDBInvariant failure when explaining a find with a UUID

medium
4.9
First published (updated )
CVE-2018-25004

MongoDBSpecially crafted regex query can cause DoS

medium
6.5
First published (updated )
CVE-2020-7929

npm/mongodb-client-encryptionMongoDB Node.js client side field level encryption library may not be validating KMS certificate

medium
6.8
First published (updated )
CVE-2021-20327

maven/org.mongodb:mongodb-driver-legacyMongoDB Java driver client-side field level encryption not verifying KMS host name

medium
6.8
First published (updated )
CVE-2021-20328

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

MongoDB Ops ManagerSSL may be unexpectedly disabled during upgrade of multiple-server MongoDB Ops Manager

medium
6.7
First published (updated )
CVE-2021-20335

MongoDBInfinite loop in aggregation expression

medium
6.5
First published (updated )
CVE-2018-20803

MongoDBImproper neutralization of null byte leads to read overrun

medium
6.5
First published (updated )
CVE-2020-7928

MongoDBCrash while joining collections with $lookup

medium
6.5
First published (updated )
CVE-2019-2393

MongoDBCrash while handling internal Javascript exception types

medium
6.5
First published (updated )
CVE-2019-20923

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203