{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-23T05:16:52.779","vulnerabilities":[{"cve":{"id":"CVE-2025-3083","sourceIdentifier":"cna@mongodb.com","published":"2025-04-01T12:15:15.883","lastModified":"2025-09-22T14:15:59.510","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Specifically crafted MongoDB wire protocol messages can cause mongos to crash during command validation. This can occur without using an authenticated connection. This issue affects MongoDB v5.0 versions prior to 5.0.31,  MongoDB v6.0 versions prior to 6.0.20 and MongoDB v7.0 versions prior to 7.0.16"},{"lang":"es","value":"Los mensajes de protocolo de conexión MongoDB manipulados específicamente pueden provocar el bloqueo de MongoDB durante la validación de comandos. Esto puede ocurrir sin usar una conexión autenticada. Este problema afecta a MongoDB v5.0 anteriores a la 5.0.31, MongoDB v6.0 anteriores a la 6.0.20 y MongoDB v7.0 anteriores a la 7.0.16."}],"metrics":{"cvssMetricV31":[{"source":"cna@mongodb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"cna@mongodb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-248"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mongodb:mongodb:*:*:*:*:*:*:*:*","versionStartIncluding":"5.0.0","versionEndExcluding":"5.0.31","matchCriteriaId":"66128ED7-B1B4-44B8-9295-D27461F161EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:mongodb:mongodb:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0","versionEndExcluding":"6.0.20","matchCriteriaId":"F398EABB-311B-4726-A414-537D4EEE1A26"},{"vulnerable":true,"criteria":"cpe:2.3:a:mongodb:mongodb:*:*:*:*:*:*:*:*","versionStartIncluding":"7.0.0","versionEndExcluding":"7.0.16","matchCriteriaId":"E95B2F98-7920-4A34-8E4F-F01DB87A76FA"}]}]}],"references":[{"url":"https://jira.mongodb.org/browse/SERVER-103152","source":"cna@mongodb.com","tags":["Issue Tracking","Vendor Advisory"]}]}}]}