FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mongodb -- MongoDB Server router will crash when incorrect lsid is set on a sharded query

Affected packages
mongodb60 < 6.0.24
mongodb70 < 7.0.18
mongodb80 < 8.0.6

Details

VuXML ID 4329e3bd-a2ca-11f0-8402-b42e991fc52e
Discovery 2025-09-05
Entry 2025-10-06

cna@mongodb.com reports:

An improper setting of the lsid field on any sharded query can cause a crash in MongoDB routers. This issue occurs when a generic argument (lsid) is provided in a case when it is not applicable.

[source]

References

CVE Name CVE-2025-10059
URL https://nvd.nist.gov/vuln/detail/CVE-2025-10059

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.