Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-11933 |
|
A use-after-free vulnerability exists in MongoDB Server's server-side JavaScript engine when...
A use-after-free vulnerability exists in MongoDB Server's server-side JavaScript engine when...
|
| CVE-2026-9753 |
|
Vulnerability in mongodb (CVE-2026-9753)
vulnerability in mongodb (CVE-2026-9753). Confidential information can be exposed externally.
|
| CVE-2026-9752 |
|
Vulnerability in mongodb (CVE-2026-9752)
vulnerability in mongodb (CVE-2026-9752). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9751 |
|
Vulnerability in mongodb (CVE-2026-9751)
vulnerability in mongodb (CVE-2026-9751). Confidential information can be exposed externally. Mitigation: upgrade to `7.0.35, 8.0.24, 8.2.10, 8.3.3` or later.
|
| CVE-2026-9743 |
|
Vulnerability in dos (CVE-2026-9743)
vulnerability in dos (CVE-2026-9743). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9735 |
|
Vulnerability in mongodb (CVE-2026-9735)
vulnerability in mongodb (CVE-2026-9735). Confidential information can be exposed externally.
|
| CVE-2026-9742 |
|
Vulnerability in mongodb (CVE-2026-9742)
vulnerability in mongodb (CVE-2026-9742). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8202 |
|
Vulnerability in mongodb (CVE-2026-8202)
vulnerability in mongodb (CVE-2026-8202). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `7.0.34, 8.0.23, 8.2.9, 8.3.2` or later.
|
| CVE-2026-8336 |
|
Use-After-Free in mongodb (CVE-2026-8336)
vulnerability in mongodb (CVE-2026-8336). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `8.2.9, 8.3.2` or later.
|
| CVE-2026-8053 |
|
Out-of-Bounds Write in mongodb (CVE-2026-8053)
out-of-bounds write in mongodb (CVE-2026-8053). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `5.0.33, 6.0.28, 7.0.34, 8.0.23, 8.2.9, 8.3.2` or later.
|
| CVE-2026-8200 |
|
Vulnerability in mongodb (CVE-2026-8200)
vulnerability in mongodb (CVE-2026-8200). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `7.0.34, 8.0.23, 8.2.9, 8.3.2` or later.
|
| CVE-2026-8201 |
|
Use-After-Free in mongodb (CVE-2026-8201)
vulnerability in mongodb (CVE-2026-8201). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `7.0.34, 8.0.23, 8.2.9, 8.3.2` or later.
|
| CVE-2026-8063 |
|
Vulnerability in mongodb (CVE-2026-8063)
vulnerability in mongodb (CVE-2026-8063). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.2.7` or later.
|
| CVE-2026-6691 |
|
Vulnerability in c (CVE-2026-6691)
vulnerability in c (CVE-2026-6691). Successful exploitation can lead to full system takeover.
|
| CVE-2025-14847 KEV |
|
[KEV] Vulnerability in mongodb (CVE-2025-14847)
vulnerability in mongodb (CVE-2025-14847). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-14227 |
|
Out-of-Bounds Read in c (CVE-2017-14227)
vulnerability in c (CVE-2017-14227). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-8180 |
|
Authentication Bypass in dos (CVE-2014-8180)
authentication bypass in dos (CVE-2014-8180). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-3104 |
|
Vulnerability in dos (CVE-2016-3104)
vulnerability in dos (CVE-2016-3104). Risk of unauthorized operations or information disclosure.
|