Mongodb Inc C Driver vulnerabilities
2 known vulnerabilities affecting mongodb_inc/c_driver.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2026-6231P3HIGHCVSS 7.5≥ 1.0, < 1.30.5≥ 2.0, < 2.0.22026-04-13
CVE-2026-6231 [HIGH] CWE-20 CVE-2026-6231: The bson_validate function may return early on specific inputs and incorrectly report success. This
The bson_validate function may return early on specific inputs and incorrectly report success. This behavior could result in skipping validation for BSON data, allowing malformed or invalid UTF-8 sequences to bypass validation and be processed incorrectly. The issue may affect applications that rely on these functions to validate untrusted BSON data befor
nvd
CVE-2026-9100P4MEDIUMCVSS 5.9≥ 1.0, < 1.30.8≥ 2.0, < 2.2.42026-05-20
CVE-2026-9100 [MEDIUM] CWE-1285 CVE-2026-9100: The MongoDB C Driver's legacy GridFS API accepts malformed file metadata from the database without a
The MongoDB C Driver's legacy GridFS API accepts malformed file metadata from the database without adequate validation. Crafted documents in a GridFS collection may cause any application that reads those files via the legacy API to either crash (via a division-by-zero) or silently leak process memory contents (via an out-of-bounds read).
nvd