Out-of-Bounds Read

mongodb/mongodb-extension is vulnerable to Out-of-Bounds Read. The vulnerability is due to improper handling of large options in mongocbulkoperationt, which allows an attacker to trigger invalid memory reads and potentially cause a crash or information disclosure...

Expired Pointer Dereference

Overview mongodb/mongodb-extension is a MongoDB driver extension Affected versions of this package are vulnerable to Expired Pointer Dereference via mongocbulkoperationt when large options are passed. An attacker can cause the application to read invalid memory. Remediation Upgrade...

EUVD-2021-18905

Malware in sbrugna...

Fedora: Security Advisory (FEDORA-2024-e7bb8bc2da)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

BIT-MONGODB-2021-32039 MongoDB Extension for VS Code may unexpectedly store credentials locally in clear text

Users with appropriate file access may be able to access unencrypted user credentials saved by MongoDB Extension for VS Code in a binary file. These credentials may be used by malicious attackers to perform unauthorized actions. This vulnerability affects all MongoDB Extension for VS Code includi...

CVE-2021-32039

Users with appropriate file access may be able to access unencrypted user credentials saved by MongoDB Extension for VS Code in a binary file. These credentials may be used by malicious attackers to perform unauthorized actions. This vulnerability affects all MongoDB Extension for VS Code includi...

CVE-2021-32039

Users with appropriate file access may be able to access unencrypted user credentials saved by MongoDB Extension for VS Code in a binary file. These credentials may be used by malicious attackers to perform unauthorized actions. This vulnerability affects all MongoDB Extension for VS Code includi...

Code injection

Users with appropriate file access may be able to access unencrypted user credentials saved by MongoDB Extension for VS Code in a binary file. These credentials may be used by malicious attackers to perform unauthorized actions. This vulnerability affects all MongoDB Extension for VS Code includi...

PT-2022-10063 · Mongodb · Mongodb Extension For Vs Code

Name of the Vulnerable Software and Affected Versions: MongoDB Extension for VS Code versions prior to 0.7.0 Description: The issue allows users with appropriate file access to obtain unencrypted user credentials saved by MongoDB Extension for VS Code in a binary file. These credentials can be us...