CVE-2025-40906 | MongoDB BSON-XS up to 0.8.4 on Perl libbson vulnerable third-party component

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability, which was classified as critical, was found in MongoDB BSON-XS up to 0.8.4 on Perl. Affected is an unknown function of the component libbson. The manipulation leads to dependency on vulnerable third-party component. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is traded as CVE-2025-40906. The attack can only be done within the local network. There is no exploit available.

CVE-2025-40906 | MongoDB BSON-XS up to 0.8.4 on Perl libbson vulnerable third-party component

Post correlati

CVE-2024-26668 | Linux Kernel up to 5.15.148/6.1.75/6.6.14/6.7.2 nft_limit integer overflow

CVE-2025-25895 | D-Link DSL-3782 1.01 Packet public_type os command injection

CVE-2024-21532 | ggit Child Process API exec os command injection (SNYK-JS-GGIT-5731320)

CVE-2025-24849 | Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Applications cleartext transmission (icsma-25-058-01)