Security Advisory

CVE-2025-3083

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-01 11:12:31

Last updated 2025-04-01 13:18:48

Assigner mongodb

State PUBLISHED

Description

Specifically crafted MongoDB wire protocol messages can cause mongos to crash during command validation. This can occur without using an authenticated connection. This issue affects MongoDB v5.0 versions prior to 5.0.31, MongoDB v6.0 versions prior to 6.0.20 and MongoDB v7.0 versions prior to 7.0.16

← Browse all CVEs View on cve.org ↗