CVE-2025-12119
MEDIUMMongoc < unknown - Memory Corruption
Title source: llmDescription
A mongoc_bulk_operation_t may read invalid memory if large options are passed.
References (4)
Scores
CVSS v3
6.8
EPSS
0.0001
EPSS Percentile
0.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
Classification
CWE
CWE-825
Status
published
Affected Products (3)
mongodb/c_driver
< 1.30.6
mongodb/php_driver
< 1.21.2
mongodb/mongodb-extension
< 1.21.2Packagist
Timeline
Published
Nov 18, 2025
Tracked Since
Feb 18, 2026