MongoDB Latest Vulnerabilities
Latest vulnerabilities published by mongodb
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Improper neutralization of null bytes may lead to buffer over-reads in MongoDB Server
CVE-2024-10921MongoDBMongodb Server6.8MEDIUMData Exposure in MongoDB Enterprise Server Due to Bug in Query Analysis
CVE-2024-8013MongodbMongo Crypt V1.so3.3LOWIndex Constraint Enforcement Issues in MongoDB Server
CVE-2024-8305MongodbMongodb6.5MEDIUMMongoDB Server May Experience Unexpected Behavior Due to Incorrect Memory Access
CVE-2024-8654MongoDBMongodb Server5MEDIUMLinux systems with MongoDB Server may load unintended libraries, potentially leading to unauthorized access
CVE-2024-8207MongoDBMongodb Server6.7MEDIUMUnderprivileged Users Can Access Sensitive Data via Backup Files in Previous MongoDB Versions
CVE-2024-6384MongoDBMongodb Server5.3MEDIUMLocal Privilege Escalation Vulnerability Affects MongoDB Servers
CVE-2024-7553MongoDBMongodb7.8HIGHBuffer Overflow Vulnerability in MongoDB C Driver Could Lead to Memory Corruption
CVE-2024-6383MongoDBLibbson5.3MEDIUMMongoDB C Driver Library Vulnerable to Integer Overflow, May Cause Memory Corruption
CVE-2024-6381MongoDBUnintended Server Commands May Cause Unexpected Application Behavior
CVE-2024-6382MongoDBMongoDB Compass Vulnerable to Code Injection Due to Sandbox Protection Settings
CVE-2024-6376MongoDBMongodb Compassπ°9.8CRITICALMissing Authorization Check in MongoDB Shard Commands Can Lead to Security Risks
CVE-2024-6375MongoDBMongodb Server6.5MEDIUMOut-of-bounds read in bson module of PyMongo
CVE-2024-5629MongoDBPymongo8.1HIGHFatal Assertion in Server Due to BSON Object Size Limit Exceedance
CVE-2024-3374MongoDBMongodb Server5.3MEDIUMMongoDB Server Vulnerability: Improper Metadata Validation May Cause Server Unavailability
CVE-2024-3372MongoDBMongodb Server7.5HIGHMongoDB Compass Vulnerability Could Lead to Data Disclosure and User Impersonation
CVE-2024-3371MongoDBMongodb Compass7.1HIGHTLS Certificate Validation Bypass Vulnerability Affects MongoDB Server Versions Prior to 7.0.5, 6.0.13, 5.0.24, and 4.4.28
CVE-2024-1351MongoDBMongodb Server8.8HIGHMongoDB client C Driver may infinitely loop when validating certain BSON input data
CVE-2023-0437MongoDBMongodb C Driver5.3MEDIUMSecret logging may occur in debug mode of Atlas Operator
CVE-2023-0436MongoDBMongoDB Atlas Kubernet...7.5HIGHSome MongoDB Drivers may publish events containing authentication-related data to a command listener configured by an application
CVE-2021-32050MongoDBMongodb C Driver4.2MEDIUMCertificate validation issue in MongoDB Server running on Windows or macOS
CVE-2023-1409MongoDBMongodb Server5.3MEDIUMPrivilege Escalation for Project Owner and Project User Admin Roles in Ops Manager
CVE-2023-4009MongoDBMongodb Ops Manager7.2HIGHMongoDB Ops Manager may disclose sensitive information in Diagnostic Archive
CVE-2023-0342MongoDBMongoDB Ops Manager 5.3MEDIUMDeserializing compromised object with MongoDB .NET/C# Driver may cause remote code execution
CVE-2022-48282MongoDBMongodb .net/c# Driver6.6MEDIUMMongoDB Server (mongod) may crash in response to unexpected requests
CVE-2022-24272MongoDBMongodb Server6.5MEDIUM