GCVE - cpe:2.3:a:mongodb_inc.:server:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:mongodb_inc.:server:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Mongodb Inc. (`050bf205-86f7-543b-9a0d-79a7153336ef`)
Product	Server (`4df56835-6f20-5dbf-94a5-6029aa506538`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-11979`	vulnerable	2026-06-03 14:58:43.584317	Use-after-free in the MongoDB server query planner may lead to crash or undefined behavior MEDIUM (5.3) An authorized user may crash the MongoDB server by causing buffer over-read. This can be done by issuing a DDL operation while queries are being issued, under some conditions. This issue affects MongoDB Server v7.0 versions prior to 7.0.25, MongoDB Server v8.0 versions prior to 8.0.15, and MongoDB Server version 8.2.0. Published: 2025-10-20T17:47:57.947Z Updated: 2025-10-20T20:21:27.265Z Open on db.gcve.eu Reference links https://jira.mongodb.org/browse/SERVER-105873	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.