Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/07/04 12:0 a.m.4 views

MongoDB 5.0.x < 5.0.31 / 6.0.x < 6.0.20 / 7.0.x < 7.0.14 / 7.3.x < 7.3.4 Improper Access Control (SERVER-103151)

The version of MongoDB installed on the remote host is 5.0 prior to 5.0.31, 6.0 prior to 6.0.20, 7.0 prior to 7.0.14, 7.3 prior to 7.3.4. It is, therefore, affected by a vulnerability as referenced in the SERVER-103151 advisory. - A user authorized to access a view may be able to alter the intend...

5.4CVSS5.8AI score0.00182EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/03 11:40 a.m.10 views

CVE-2025-3082

A user authorized to access a view may be able to alter the intended collation, allowing them to access to a different or unintended view of underlying data. This issue affects MongoDB Server v5.0 version prior to 5.0.31, MongoDB Server v6.0 version prior to 6.0.20, MongoDB Server v7.0 version...

3.1CVSS7AI score0.00182EPSS
Exploits0References3
Circl
Circl
added 2025/04/01 11:34 a.m.7 views

CVE-2025-3082

creationtimestamp| type| source ---|---|--- 2025-04-01 11:34:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9875 2025-04-01 16:23:21+00:00| seen| https://t.me/cvedetector/21754 2025-04-02 23:09:18+00:00| seen| https://bsky.app/profile/omo.bsky.social/post/3lluiyzj2ms2x...

5.4CVSS4.8AI score0.00182EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/04/01 11:8 a.m.8 views

CVE-2025-3082 User may override a view's collation and gain unauthorized access to underlying data

A user authorized to access a view may be able to alter the intended collation, allowing them to access to a different or unintended view of underlying data. This issue affects MongoDB Server v5.0 version prior to 5.0.31, MongoDB Server v6.0 version prior to 6.0.20, MongoDB Server v7.0 version...

3.1CVSS7AI score0.00182EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/01 11:8 a.m.29 views

CVE-2025-3082 User may override a view's collation and gain unauthorized access to underlying data

A user authorized to access a view may be able to alter the intended collation, allowing them to access to a different or unintended view of underlying data. This issue affects MongoDB Server v5.0 version prior to 5.0.31, MongoDB Server v6.0 version prior to 6.0.20, MongoDB Server v7.0 version...

3.1CVSS0.00182EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 11:8 a.m.93 views

CVE-2025-3082

CVE-2025-3082 affects MongoDB Server versions prior to fixes: 5.0.31, 6.0.20, 7.0.14, and 7.3.4. A user with view access can alter the intended collation, allowing access to a different or unintended view of underlying data. The vulnerability is rooted in improper access control during view colla...

5.4CVSS7AI score0.00182EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/04/01 11:8 a.m.4 views

CVE-2025-3082 User may override a view's collation and gain unauthorized access to underlying data

A user authorized to access a view may be able to alter the intended collation, allowing them to access to a different or unintended view of underlying data. This issue affects MongoDB Server v5.0 version prior to 5.0.31, MongoDB Server v6.0 version prior to 6.0.20, MongoDB Server v7.0 version...

3.1CVSS5.9AI score0.00182EPSS
Exploits0References3
Rows per page
Query Builder