Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-11695
CVE-2025-11695
When tlsInsecure=False appears in a connection string, certificate validation is disabled. This vulnerability affects MongoDB Rust Driver versions prior to v3.2.5
Published Oct 15, 2025
https://github.com/advisories/GHSA-3p6w-gv5g-xjw9
CVSS Score
High
7.5
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
cargo
mongodb
0.0.1
cargo
mongodb
0.1.0
cargo
mongodb
0.1.1
cargo
mongodb
0.1.3
cargo
mongodb
0.1.4
cargo
mongodb
0.1.5
cargo
mongodb
0.1.6
cargo
mongodb
0.1.7
cargo
mongodb
0.1.8
cargo
mongodb
0.10.0
cargo
mongodb
0.11.0
cargo
mongodb
0.2.0
cargo
mongodb
0.2.1
cargo
mongodb
0.2.2
cargo
mongodb
0.2.3
cargo
mongodb
0.2.5
cargo
mongodb
0.2.6
cargo
mongodb
0.2.7
cargo
mongodb
0.2.8
cargo
mongodb
0.2.9
cargo
mongodb
0.3.0
cargo
mongodb
0.3.10
cargo
mongodb
0.3.11
cargo
mongodb
0.3.12
cargo
mongodb
0.3.1
cargo
mongodb
0.3.2
cargo
mongodb
0.3.3
cargo
mongodb
0.3.4
cargo
mongodb
0.3.5
cargo
mongodb
0.3.6
cargo
mongodb
0.3.7
cargo
mongodb
0.3.8
cargo
mongodb
0.3.9
cargo
mongodb
0.4.0
cargo
mongodb
0.9.0-alpha
cargo
mongodb
0.9.0
cargo
mongodb
0.9.1
cargo
mongodb
0.9.2
cargo
mongodb
1.0.0
cargo
mongodb
1.1.0-beta
cargo
mongodb
1.1.0
cargo
mongodb
1.1.1
cargo
mongodb
1.2.0
cargo
mongodb
1.2.1
cargo
mongodb
1.2.2
cargo
mongodb
1.2.3
cargo
mongodb
1.2.4
cargo
mongodb
1.2.5
cargo
mongodb
2.0.0-alpha.1
cargo
mongodb
2.0.0-alpha
1-50 of 90
CVE-2025-11695 | Components Impacted | Sonatype Guide | Sonatype Guide
