Mongodb Php Driver vulnerabilities

CVE-2025-12119 [MEDIUM] CWE-825 CVE-2025-12119: A mongoc_bulk_operation_t may read invalid memory if large options are passed. A mongoc_bulk_operation_t may read invalid memory if large options are passed.

CVE-2024-7553 [HIGH] CWE-284 CVE-2024-7553: Incorrect validation of files loaded from a local untrusted directory may allow local privilege esca Incorrect validation of files loaded from a local untrusted directory may allow local privilege escalation if the underlying operating systems is Windows. This may result in the application executing arbitrary behaviour determined by the contents of untrusted files. This issue affects MongoDB Server v5.0 versions prior to 5.0.27, MongoDB Server v6.0 ver

CVE-2021-32050 [HIGH] CWE-200 CVE-2021-32050: Some MongoDB Drivers may erroneously publish events containing authentication-related data to a comm Some MongoDB Drivers may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when specific authentication-related commands are executed. Without due care, an application may inadvertently expose this sensitive information, e.g.,