GCVE - cpe:2.3:a:mongodb:mongodb:6.0.23:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:mongodb:mongodb:6.0.23:*:*:*:*:*:*:*

part: a version: 6.0.23 update: *

Vendor	Mongodb (`1aa156a6-63a9-5032-baaf-10197d408a1e`)
Product	Mongodb (`fa9f1f9b-0cc9-5830-a189-b908276ac432`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-6707`	vulnerable	2026-06-03 15:12:28.641526	Race condition in privilege cache invalidation cycle MEDIUM (4.2) Under certain conditions, an authenticated user request may execute with stale privileges following an intentional change by an authorized administrator. This issue affects MongoDB Server v5.0 version prior to 5.0.31, MongoDB Server v6.0 version prior to 6.0.24, MongoDB Server v7.0 version prior to 7.0.21 and MongoDB Server v8.0 version prior to 8.0.5. Published: 2025-06-26T14:04:46.283Z Updated: 2026-02-26T17:50:22.191Z Open on db.gcve.eu Reference links https://jira.mongodb.org/browse/SERVER-93497	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.