Mongodb Server
Approved changes feed: RSS · Atom
cpe:2.3:a:mongodb:mongodb_server:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Mongodb (1aa156a6-63a9-5032-baaf-10197d408a1e) |
|---|---|
| Product | Mongodb Server (c646f8d8-4aa2-5574-9b4e-de8f2a5be20a) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-6915 |
vulnerable | 2026-06-03 15:27:55.887633 |
Flaw in the updateUser Command May Allow Unauthorized Configuration Change
MEDIUM (6.3)
An authorization flaw in the user management command could allow an authenticated user to make limited changes to authentication-related data associated with another user account. This could affect how authentication is performed for the impacted account.
Published: 2026-04-29T16:51:01.903Z
Updated: 2026-04-29T17:49:18.851Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-6914 |
vulnerable | 2026-06-03 15:27:55.881193 |
MD5 checksum creation may cause availability loss
MEDIUM (6.5)
Computing the MD5 checksum of a malformed BSON object under specific conditions may cause loss of availability in MongoDB server.
This issue affects all MongoDB Server v8.2 versions, all MongoDB Server v8.1 versions, MongoDB Server v8.0 versions prior to 8.0.21, MongoDB Server v7.0 versions prior to 7.0.32
Published: 2026-04-29T16:47:02.056Z
Updated: 2026-04-29T17:49:48.034Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-5170 |
vulnerable | 2026-06-03 15:26:26.637957 |
Users could trigger a crash of mongod primaries during promotion to sharded
MEDIUM (5.3)
A user with access to the cluster with a limited set of privilege actions can trigger a crash of a mongod process during the limited and unpredictable window when the cluster is being promoted from a replica set to a sharded cluster. This may cause a denial of service by taking down the primary of the replica set.
This issue affects MongoDB Server v8.2 versions prior to 8.2.2, MongoDB Server v8.0 versions between 8.0.18, MongoDB Server v7.0 versions between 7.0.31.
Published: 2026-03-30T15:28:57.572Z
Updated: 2026-03-30T16:02:37.318Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.