Filter
Software
mongodb mongodb
45
mongodb c driver
4
mongodb ops manager
3
mongodb bson
2
mongodb c\# driver
2
mongodb compass
2
mongodb js-bson
2
mongodb ops manager server
2
mongodb php driver
2
mongodb atlas kubernetes operator
1
mongodb c\+\+
1
mongodb database tools
1
mongodb go driver
1
mongodb java driver
1
mongodb libbson
1
mongodb libmongocrypt
1
mongodb mongo crypt v1.so mongodb
1
mongodb mongo-express
1
mongodb mongocryptd mongodb
1
mongodb mongodb enterprise kubernetes operator
1
mongodb mongomirror
1
mongodb node.js
1
mongodb pymongo
1
mongodb rust driver
1
mongodb swift driver
1
Mongo-express Project Mongo-expressMongoDB mongo-express Remote Code Execution Vulnerability
First published (updated )
MongoDB Compassejson shell parser in MongoDB Compass maybe bypassed
9.8
EPSS
0.07%
First published (updated )
Mongodb BsonAll versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package w…
9.8
First published (updated )
MongoDB MongoDBMongoDB 3.4.x before 3.4.10, and 3.5.x-development, has a disabled-by-default configuration setting,…
9.1
First published (updated )
MongoDB MongoDBCode execution on Windows via OpenSSL engine injection
8.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/pymongoOut-of-bounds read in bson module of PyMongo
8.1
EPSS
0.09%
First published (updated )
redhat/libbson_bson_iter_next_internal in bson-iter.c in libbson 1.12.0, as used in MongoDB mongo-c-driver and oth…
8.1
First published (updated )
MongoDB Ops ManagerPotential privilege escalation in Ops Manager API
8.1
First published (updated )
MongoDB MongoDBAuthentication bypass when using LDAP authentication in MongoDB Enterprise Server
8.1
First published (updated )
MongoDB MongoDBAccessing Untrusted Directory May Allow Local Privilege Escalation
7.8
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MongoDB CompassLocal privilege escalation in MongoDB Compass for Windows
7.8
First published (updated )
Mongodb C DriverMongoDB client C Driver may infinitely loop when validating certain BSON input data
7.5
First published (updated )
Mongodb Js-bsonThe MongoDB bson JavaScript module (also known as js-bson) versions 0.5.0 to 1.0.x before 1.0.5 is v…
7.5
First published (updated )
MongoDB MongoDBDenial of service via malformed network packet
7.5
First published (updated )
MongoDB MongoDBDenial of Service when processing malformed Role names
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MongoDB MongoDBmongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a denial …
7.5
First published (updated )
MongoDB MongoDBIn MongoDB libbson 1.7.0, the bson_iter_codewscope function in bson-iter.c miscalculates a bson_utf8…
7.5
First published (updated )
MongoDB MongoDBLarge aggregation pipelines with a specific stage can crash mongod under default configuration
7.5
First published (updated )
MongoDB Atlas Kubernetes OperatorSecret logging may occur in debug mode of Atlas Operator
7.5
First published (updated )
MongoDB MongoDBCertificate validation issue in MongoDB Server running on Windows or macOS
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraThe Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4 as used in rubygem-moped al…
7.5
First published (updated )
Mongodb Node.jsSome MongoDB Drivers may publish events containing authentication-related data to a command listener configured by an application
7.5
First published (updated )
Mongodb C\# DriverDeserializing compromised object with MongoDB .NET/C# Driver may cause remote code execution
7.2
First published (updated )
Mongodb Ops Manager ServerPrivilege Escalation for Project Owner and Project User Admin Roles in Ops Manager
7.2
First published (updated )
MongoDB MongoDBDenial of Service and Data Integrity vulnerability in features command
7.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MongoDB MongoDBThe skyring-setup command creates random password for mongodb skyring database but it writes passwor…
7
First published (updated )
Mongodb Java DriverMongoDB Java driver client-side field level encryption not verifying KMS host name
6.8
First published (updated )
Mongodb Go DriverSpecific cstrings input may not be properly validated in the Go Driver
6.8
First published (updated )
Mongodb LibmongocryptMongoDB Node.js client side field level encryption library may not be validating KMS certificate
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.