VYPR
High severity8.1OSV Advisory· Published Sep 10, 2018· Updated Jun 17, 2026

CVE-2018-16790

CVE-2018-16790

Description

_bson_iter_next_internal in bson-iter.c in libbson 1.12.0, as used in MongoDB mongo-c-driver and other products, has a heap-based buffer over-read via a crafted bson buffer.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • MongoDB/C DriverOSV2 versions
    0.90.0, 0.92.0, 0.92.2, …+ 1 more
    • (no CPE)range: 0.90.0, 0.92.0, 0.92.2, …
    • (no CPE)range: = 1.12.0
  • MongoDB/Libbsonllm-fuzzy
    Range: = 1.12.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.