Vulnerabilidades em MongoDB Inc.
53 resultadosCVE-2025-14847HIGHZlib compressed protocol header length confusion may allow memory readEPSS 83.0%KEVCVE-2021-32040MEDIUMLarge aggregation pipelines with a specific stage can crash mongod under default configurationEPSS 1.9%CVE-2020-7925HIGHDenial of Service when processing malformed Role namesEPSS 1.7%CVE-2019-20925HIGHDenial of service via malformed network packetEPSS 1.7%CVE-2018-20802MEDIUMPost-auth queries on compound index may crash mongodEPSS 1.5%CVE-2020-7928MEDIUMImproper neutralization of null byte leads to read overrunEPSS 1.4%CVE-2020-7926MEDIUMSpecific query can cause a DoS against MongoDB ServerEPSS 1.4%CVE-2020-7929MEDIUMSpecially crafted regex query can cause DoSEPSS 1.3%CVE-2019-20924MEDIUMInvariant in IndexBoundsBuilderEPSS 1.3%CVE-2020-7923MEDIUMSpecific GeoQuery can cause DoS against MongoDB ServerEPSS 1.3%CVE-2021-20333MEDIUMServer log entry spoofing via newline injectionEPSS 1.3%CVE-2018-20803MEDIUMInfinite loop in aggregation expressionEPSS 1.3%CVE-2019-20923MEDIUMCrash while handling internal Javascript exception typesEPSS 1.3%CVE-2019-2392MEDIUM$mod can result in undefined behaviorEPSS 1.2%CVE-2019-2393MEDIUMCrash while joining collections with $lookupEPSS 1.2%CVE-2018-20805MEDIUMInvariant with $elemMatchEPSS 1.2%CVE-2018-20804MEDIUMInvariant failure in applyOpsEPSS 1.2%CVE-2019-2386HIGHAuthorization session conflationEPSS 1.2%CVE-2021-32037MEDIUMUser may trigger invariant when allowed to send commands directly to shardsEPSS 1.2%CVE-2021-20330MEDIUMSpecific replication command with malformed oplog entries can crash secondariesEPSS 1.0%