12 matches found
PT-2026-41790
Name of the Vulnerable Software and Affected Versions OpenTelemetry eBPF Instrumentation versions 0.1.0 through 0.8.0 Description Malformed MongoDB wire messages can trigger uncaught panics in the MongoDB TCP parser, allowing a remote unauthenticated attacker to crash the telemetry agent and caus...
UBUNTU-CVE-2025-13507
Inconsistent object size validation in time series processing logic may result in later processing of oversized BSON documents leading to an assert failing and process termination. This issue impacts MongoDB Server v7.0 versions prior to 7.0.26, v8.0 versions prior to 8.0.16 and MongoDB server v8...
EUVD-2012-4231
Malware in sbrugna...
MongoDB 7.0.x < 7.0.16 / 8.0.x < 8.0.1 Buffer Overflow (SERVER-94461)
The version of MongoDB installed on the remote host is 7.0 prior to 7.0.16 and 8.0 prior to 8.0.1. It is, therefore, affected by a vulnerability as referenced in the SERVER-94461 advisory. - The various bsonappend functions in the MongoDB C driver library may be susceptible to buffer overflow whe...
CVE-2025-0755
The various bsonappend functions in the MongoDB C driver library may be susceptible to buffer overflow when performing operations that could result in a final BSON document which exceeds the maximum allowable size INT32MAX, resulting in a segmentation fault and possible application crash. This...
CVE-2025-0755 MongoDB C Driver bson library may be susceptible to buffer overflow
The various bsonappend functions in the MongoDB C driver library may be susceptible to buffer overflow when performing operations that could result in a final BSON document which exceeds the maximum allowable size INT32MAX, resulting in a segmentation fault and possible application crash. This...
CVE-2025-0755
The various bsonappend functions in the MongoDB C driver library may be susceptible to buffer overflow when performing operations that could result in a final BSON document which exceeds the maximum allowable size INT32MAX, resulting in a segmentation fault and possible application crash. This...
SUSE CVE-2012-4287
epan/dissectors/packet-mongo.c in the MongoDB dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to cause a denial of service loop and CPU consumption via a small value for a BSON document length...
[SECURITY] Fedora 26 Update: libbson-1.6.3-2.fc26
This is a library providing useful routines related to building, parsing, and iterating BSON documents...
CVE-2012-4287
epan/dissectors/packet-mongo.c in the MongoDB dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to cause a denial of service loop and CPU consumption via a small value for a BSON document length...
CVE-2012-4287
epan/dissectors/packet-mongo.c in the MongoDB dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to cause a denial of service loop and CPU consumption via a small value for a BSON document length...
CVE-2012-4287
epan/dissectors/packet-mongo.c in the MongoDB dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to cause a denial of service loop and CPU consumption via a small value for a BSON document length...