MongoDB 6.0.x < 6.0.25 / 7.0.x < 7.0.22 / 8.0.x < 8.0.12 (SERVER-95524)

The version of MongoDB installed on the remote host is 6.0 prior to 6.0.25, 7.0 prior to 7.0.22 and 8.0 prior to 8.0.12. It is, therefore, affected by a vulnerability as referenced in the SERVER-95524 advisory. - MongoDB Server may allow upsert operations retried within a transaction to violate...

CVE-2025-10060 MongoDB may be susceptible to Invariant Failure in Transactions due Upsert Operation

MongoDB Server may allow upsert operations retried within a transaction to violate unique index constraints, potentially causing an invariant failure and server crash during commit. This issue may be triggered by improper WriteUnitOfWork state management. This issue affects MongoDB Server v6.0...