Lucene search
K

65 matches found

Cvelist
Cvelist
added 2026/01/27 5:29 p.m.27 views

CVE-2025-14911 Integer Overflow in GridFS chunkSize Leading to Heap Allocation Failure

User-controlled chunkSize metadata from MongoDB lacks appropriate validation allowing malformed GridFS metadata to overflow the bounding container...

7.1CVSS0.00275EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.8 views

PT-2026-4984

Name of the Vulnerable Software and Affected Versions MongoDB affected versions not specified Description User-controlled chunkSize metadata lacks appropriate validation, potentially leading to malformed GridFS metadata overflowing the bounding container. This can result in a heap allocation...

7.1CVSS5.8AI score0.00275EPSS
Exploits0References15
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.11 views

MongoDB security vulnerabilities

MongoDB is a document-oriented database management system developed by MongoDB Corporation in the United States. There is a security vulnerability in MongoDB, which stems from insufficient validation of the chunkSize metadata. This vulnerability may lead to a overflow of the boundary container du...

7.1CVSS5.8AI score0.00275EPSS
Exploits0References1
Hacker One
Hacker One
added 2019/02/25 3:5 p.m.12 views

Rocket.Chat: Upload of Avatars for other Users

The vulnerability allowed unprivileged users to upload avatar pictures on behalf of other users. The effect of the exploit depended on the storage backend, with the default GridFS being affected. The vulnerability was found in the Rocket.Chat development version at commit 5f0180dc...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.39 views

Fedora 29 : mongo-c-driver (2018-2f8f5f75f1)

libbson 1.13.0 Features: - New functions to save and restore progress of a bsonitert: bsoniterkeylen, bsoniteroffset, and soniterinitfromdataatoffset Additional functions bsoniteroverwritedatetime, bsoniteroverwriteoid, and bsoniteroverwritetimestamp. All fixed-length BSON values can now be updat...

8.1CVSS7.5AI score0.02137EPSS
Exploits0References2
Rows per page
Query Builder