{"id":"CVE-2025-3083","details":"Specifically crafted MongoDB wire protocol messages can cause mongos to crash during command validation. This can occur without using an authenticated connection. This issue affects MongoDB v5.0 versions prior to 5.0.31,  MongoDB v6.0 versions prior to 6.0.20 and MongoDB v7.0 versions prior to 7.0.16","aliases":["BIT-mongodb-2025-3083"],"modified":"2026-04-12T14:42:34.293452Z","published":"2025-04-01T12:15:15.883Z","references":[{"type":"REPORT","url":"https://jira.mongodb.org/browse/SERVER-103152"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mongodb/mongo","events":[{"introduced":"1184f004a99660de6f5e745573419bda8a28c0e9"},{"fixed":"e8c5dca807cdfef1c9b3141c4c2bcd613d9700e7"},{"introduced":"e61bf27c2f6a83fed36e5a13c008a32d563babe2"},{"fixed":"6b39fbde5c06d2b5ac027082217fb557673bd60d"},{"introduced":"37d84072b5c5b9fd723db5fa133fb202ad2317f1"},{"fixed":"83c3f10433284e1296498e90d8e1439af951deec"}],"database_specific":{"versions":[{"introduced":"5.0.0"},{"fixed":"5.0.31"},{"introduced":"6.0.0"},{"fixed":"6.0.20"},{"introduced":"7.0.0"},{"fixed":"7.0.16"}]}}],"versions":["r5.0.0","r5.0.1","r5.0.1-rc0","r5.0.10","r5.0.10-rc0","r5.0.11","r5.0.11-rc0","r5.0.11-rc1","r5.0.12","r5.0.12-rc0","r5.0.13","r5.0.13-rc0","r5.0.14","r5.0.14-rc0","r5.0.15","r5.0.15-rc0","r5.0.15-rc1","r5.0.15-rc2","r5.0.16","r5.0.16-rc0","r5.0.17","r5.0.17-rc0","r5.0.18","r5.0.18-rc0","r5.0.18-rc1","r5.0.18-rc2","r5.0.19","r5.0.19-rc0","r5.0.2","r5.0.2-rc0","r5.0.20","r5.0.20-rc0","r5.0.20-rc1","r5.0.21","r5.0.21-rc0","r5.0.22","r5.0.22-rc0","r5.0.22-rc1","r5.0.23","r5.0.23-rc0","r5.0.24","r5.0.24-rc0","r5.0.25","r5.0.25-rc0","r5.0.26","r5.0.26-rc0","r5.0.27","r5.0.27-rc0","r5.0.28","r5.0.28-rc0","r5.0.29","r5.0.29-rc0","r5.0.3","r5.0.3-rc0","r5.0.3-rc1","r5.0.3-rc2","r5.0.30","r5.0.31-rc0","r5.0.4","r5.0.4-rc0","r5.0.5","r5.0.5-rc0","r5.0.6","r5.0.6-rc0","r5.0.6-rc1","r5.0.6-rc2","r5.0.7","r5.0.7-rc0","r5.0.7-rc1","r5.0.8","r5.0.8-rc0","r5.0.9","r5.0.9-rc0","r5.0.9-rc1","r6.0.0","r6.0.1","r6.0.1-rc0","r6.0.10","r6.0.10-rc0","r6.0.11","r6.0.11-rc0","r6.0.12","r6.0.12-rc0","r6.0.12-rc1","r6.0.13","r6.0.13-rc0","r6.0.14","r6.0.14-rc0","r6.0.14-rc1","r6.0.15","r6.0.15-rc0","r6.0.16","r6.0.16-rc0","r6.0.17","r6.0.17-rc0","r6.0.18","r6.0.18-rc0","r6.0.19","r6.0.2","r6.0.2-rc0","r6.0.2-rc1","r6.0.20-rc0","r6.0.20-rc1","r6.0.20-rc2","r6.0.3","r6.0.3-rc0","r6.0.3-rc1","r6.0.3-rc2","r6.0.4","r6.0.4-rc0","r6.0.4-rc1","r6.0.5","r6.0.5-rc0","r6.0.5-rc1","r6.0.6","r6.0.6-rc0","r6.0.6-rc1","r6.0.7","r6.0.7-rc0","r6.0.8","r6.0.8-rc0","r6.0.9","r6.0.9-rc0","r6.0.9-rc1","r7.0.0","r7.0.1","r7.0.1-rc0","r7.0.10","r7.0.10-rc0","r7.0.11","r7.0.11-rc0","r7.0.11-rc1","r7.0.11-rc2","r7.0.12","r7.0.12-rc0","r7.0.12-rc1","r7.0.13","r7.0.13-rc0","r7.0.13-rc1","r7.0.14","r7.0.14-rc0","r7.0.15","r7.0.15-rc0","r7.0.15-rc1","r7.0.2","r7.0.2-rc0","r7.0.2-rc1","r7.0.2-rc2","r7.0.3","r7.0.3-rc0","r7.0.3-rc1","r7.0.4","r7.0.4-rc0","r7.0.5","r7.0.5-rc0","r7.0.6","r7.0.6-rc0","r7.0.7","r7.0.7-rc0","r7.0.7-rc1","r7.0.7-rc2","r7.0.8","r7.0.8-rc0","r7.0.9","r7.0.9-rc0","r7.0.9-rc1"],"database_specific":{"vanir_signatures":[{"signature_type":"Line","source":"https://github.com/mongodb/mongo/commit/6b39fbde5c06d2b5ac027082217fb557673bd60d","id":"CVE-2025-3083-37cd3957","signature_version":"v1","target":{"file":"src/mongo/db/pipeline/document_source_unwind.cpp"},"digest":{"line_hashes":["111874932942046114223144494633221209129","256161905959451949254944526044843089200","256297468071740735162236456708360012742","235830183144559937999253149604957112306","333439315193046824989860925238314039277","67806875461468992500661772377747545565","315068057892469383161678055746093791167","163662512404082480371673185596467494915","305521259106150362239553553475319460417","237949536939246254356068982710758675285","233368596813223622005935141840143744284","249840967872087541426899006816657862039"],"threshold":0.9},"deprecated":false},{"signature_type":"Function","source":"https://github.com/mongodb/mongo/commit/6b39fbde5c06d2b5ac027082217fb557673bd60d","id":"CVE-2025-3083-68b5792a","signature_version":"v1","target":{"file":"src/mongo/db/pipeline/document_source_unwind.cpp","function":"DocumentSourceUnwind::Unwinder::Unwinder"},"digest":{"function_hash":"158583053690993594079961819885580517603","length":229},"deprecated":false},{"signature_type":"Function","source":"https://github.com/mongodb/mongo/commit/e8c5dca807cdfef1c9b3141c4c2bcd613d9700e7","id":"CVE-2025-3083-98e95ab3","signature_version":"v1","target":{"file":"src/mongo/db/s/shard_server_op_observer.cpp","function":"ShardServerOpObserver::onCreateCollection"},"digest":{"function_hash":"317059203157195173859428266013583839835","length":959},"deprecated":false},{"signature_type":"Line","source":"https://github.com/mongodb/mongo/commit/e8c5dca807cdfef1c9b3141c4c2bcd613d9700e7","id":"CVE-2025-3083-a50b1d1c","signature_version":"v1","target":{"file":"src/mongo/db/s/shard_server_op_observer.cpp"},"digest":{"line_hashes":["338095024408874251521027627609623809923","19517780008182253857358285612128038534","95532667481650364120857114228697583222","224358683231941325215866037278555672552"],"threshold":0.9},"deprecated":false},{"signature_type":"Line","source":"https://github.com/mongodb/mongo/commit/6b39fbde5c06d2b5ac027082217fb557673bd60d","id":"CVE-2025-3083-c5867b8d","signature_version":"v1","target":{"file":"src/mongo/db/pipeline/document_source_unwind_test.cpp"},"digest":{"line_hashes":["22086865423945277420463346282675410359","230789960585398782210326326319515422235","248302116163759668327706100034840776012"],"threshold":0.9},"deprecated":false},{"signature_type":"Function","source":"https://github.com/mongodb/mongo/commit/6b39fbde5c06d2b5ac027082217fb557673bd60d","id":"CVE-2025-3083-c61a0dde","signature_version":"v1","target":{"file":"src/mongo/db/pipeline/document_source_unwind.cpp","function":"DocumentSourceUnwind::Unwinder::getNext"},"digest":{"function_hash":"178158968249656320450514116893340795177","length":1055},"deprecated":false},{"signature_type":"Line","source":"https://github.com/mongodb/mongo/commit/6b39fbde5c06d2b5ac027082217fb557673bd60d","id":"CVE-2025-3083-e8342bcf","signature_version":"v1","target":{"file":"src/mongo/db/pipeline/field_path.h"},"digest":{"line_hashes":["222656228999319984345615210932081431974","193954611145980170235708013613831262012","28258538037177236396132426160576990472","225632782582637378616067280143374015707","74892736587624400858128677358105557890","63274386290555953020237546162368808513"],"threshold":0.9},"deprecated":false},{"signature_type":"Line","source":"https://github.com/mongodb/mongo/commit/83c3f10433284e1296498e90d8e1439af951deec","id":"CVE-2025-3083-f4e7f784","signature_version":"v1","target":{"file":"src/mongo/bson/bsonelement.cpp"},"digest":{"line_hashes":["289615031260393640600166978000810598326","174263353031095360354811222590375994238","37893113743661401367433766006617245139","198144288324145422179690954053153156848","36736246737633378293539884485657169555","107960196219712511888740040531924676267","206814875902817473337604736024570314060","53794623527901874886021005038858917961","86216376997418627178498948009103823509","288140461283838078858484965111659814713","10494605545332134506779439480935528073","247093533371582096541006174949470880670","238562345504294130821711521928913826245","40087696666882332579116474790751576649","178274430025655671790804198721508786684","305981361343553242930562815423828793219","5425285738287593101438645327605096452","156448683704151910540358080284558968747","211541693896111393054536435571123395187","270125743232337666654344342259579419777","199307348140951533813034461210201531339","158338784605393838348032193174577480773","192065423660775606198050130755657769016","164808174757467748202056433614118846976","257873045955097889346597301578982132831","206036861653635625985012625410408853630","33564014120465565687393381457032042640","203221042432156515722803349853247916204","76821125106791797375526121394193145082","155500411777895219702765076758184467317"],"threshold":0.9},"deprecated":false}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-3083.json","vanir_signatures_modified":"2026-04-12T14:42:34Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}