4 matches found
CVE-2025-14847
Mismatched length fields in Zlib compressed protocol headers may allow a read of uninitialized heap memory by an unauthenticated client. This issue affects all MongoDB Server v7.0 prior to 7.0.28 versions, MongoDB Server v8.0 versions prior to 8.0.17, MongoDB Server v8.2 versions prior to 8.2.3,...
Linux Distros Unpatched Vulnerability : CVE-2018-20802
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries with compound indexes affecting QueryPlanner...
Linux Distros Unpatched Vulnerability : CVE-2020-7929
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A user authorized to perform database queries may trigger denial of service by issuing specially crafted query contain a type of regex. This issue affects Mongo...
MongoDB Security Vulnerabilities
MongoDB is a document-oriented database management system from the American company MongoDB. A security vulnerability exists in MongoDB, which originates from the possibility that a user authorized to perform a database query may issue a special query with a composite index that affects...