HIGH8.1CVE-2018-16790_bson_iter_next_internal in bson-iter.c in libbson 1.12.0, as used in MongoDB mongo-c-driver and other products, has a heap-based buffer ov… from 0, < 1.13.0-1
HIGH7.5CVE-2026-6231The bson_validate function may return early on specific inputs and incorrectly report success. from 0
HIGH7.5CVE-2025-0755MongoDB C Driver bson library may be susceptible to buffer overflow from 0, < 1.17.6-1+deb11u1
HIGH7.5When calling bson_utf8_validate on some inputs a loop with an exit condition that cannot be reached may occur, i.e.
from 0, < 1.17.6-1+deb11u1
MEDIUM6.8mongo-c-driver - security update
from 0, < 1.17.6-1+deb11u2
MEDIUM6.8mongo-c-driver - security update
from 0, < 1.17.6-1+deb11u2
MEDIUM5.3The bson_string_append function in MongoDB C Driver may be vulnerable to a buffer overflow where the function might attempt to allocate too…
from 0, < 1.17.6-1+deb11u1
MEDIUM5.3The bson_strfreev function in the MongoDB C driver library may be susceptible to an integer overflow where the function will try to free me…
from 0, < 1.17.6-1+deb11u1
MEDIUM4.2mongo-c-driver - security update
from 0, < 1.17.6-1+deb11u1
MEDIUM4.2mongo-c-driver - security update
from 0, < 1.17.6-1+deb11u1
LOW3.7A compromised third party cloud server or man-in-the-middle attacker could send a malformed HTTP response and cause a crash in applications…
from 0
—The MongoDB C Driver's legacy GridFS API accepts malformed file metadata from the database without adequate validation.
from 0
—The MongoDB C Driver's Cyrus SASL integration performs unsafe string copying during username canonicalization, enabling a heap buffer overf…
from 0
—User-controlled chunkSize metadata from MongoDB lacks appropriate validation allowing malformed GridFS metadata to overflow the bounding co…
from 0