NuGet package
mongodb.driver
pkg:nuget/mongodb.driver
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-48282 | — | < 2.19.0 | 2.19.0 | Feb 21, 2023 | Under very specific circumstances (see Required configuration section below), a privileged user is able to cause arbitrary code to be executed which may cause further disruption to services. This is specific to applications written in C#. This affects all MongoDB .NET/C# Driver v | ||
| CVE-2021-20331 | — | >= 2.11.0, < 2.12.2 | 2.12.2 | May 13, 2021 | Specific versions of the MongoDB C# Driver may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when commands such as "saslStart", "saslContinue", "isMast |
- CVE-2022-48282Feb 21, 2023affected < 2.19.0fixed 2.19.0
Under very specific circumstances (see Required configuration section below), a privileged user is able to cause arbitrary code to be executed which may cause further disruption to services. This is specific to applications written in C#. This affects all MongoDB .NET/C# Driver v
- CVE-2021-20331May 13, 2021affected >= 2.11.0, < 2.12.2fixed 2.12.2
Specific versions of the MongoDB C# Driver may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when commands such as "saslStart", "saslContinue", "isMast