CLEANSTART-2026-UJ06223

See a problem?

Import Source

https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-UJ06223.json

JSON Data

https://api.test.osv.dev/v1/vulns/CLEANSTART-2026-UJ06223

Upstream

CVE-2025-25285

CVE-2026-21637

ghsa-23c5-xmqv-rm74

ghsa-34x7-hfp2-rc4v

ghsa-72xf-g2v4-qvf3

ghsa-7r86-cg39-jmmj

ghsa-83g3-92jg-28cx

ghsa-8gc5-j5rx-235r

ghsa-8qq5-rm4j-mr97

ghsa-9ppj-qmqm-q256

ghsa-fj3w-jwp8-x2g3

ghsa-fjxv-7rqg-78g4

ghsa-jp2q-39xq-3w4g

ghsa-mh29-5h37-fv8m

ghsa-pfrx-2q88-qq97

ghsa-qffp-2rhf-9h96

ghsa-r6q2-hw4h-h46w

ghsa-rc47-6667-2j5j

ghsa-rmvr-2pp2-xj38

Published

2026-04-01T09:13:46.317772Z

Modified

2026-05-20T18:15:06.571876876Z

Summary

Security fixes for CVE-2025-25285, CVE-2026-21637, ghsa-23c5-xmqv-rm74, ghsa-34x7-hfp2-rc4v, ghsa-72xf-g2v4-qvf3, ghsa-7r86-cg39-jmmj, ghsa-83g3-92jg-28cx, ghsa-8gc5-j5rx-235r, ghsa-8qq5-rm4j-mr97, ghsa-9ppj-qmqm-q256, ghsa-fj3w-jwp8-x2g3, ghsa-fjxv-7rqg-78g4, ghsa-jp2q-39xq-3w4g, ghsa-mh29-5h37-fv8m, ghsa-pfrx-2q88-qq97, ghsa-qffp-2rhf-9h96, ghsa-r6q2-hw4h-h46w, ghsa-rc47-6667-2j5j, ghsa-rmvr-2pp2-xj38 applied in versions: 2.6.0-r1, 2.7.0-r0, 2.8.1-r0

Details

Multiple security vulnerabilities affect the mongosh package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / mongosh

Package

Name: mongosh

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.8.1-r0

Database specific

source

"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-UJ06223.json"