URL has been copied successfully!
MongoBleed: unauthenticated memory disclosure in MongoDB (CVE-2025-14847)
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

MongoBleed: unauthenticated memory disclosure in MongoDB (CVE-2025-14847)


Tags: , ,

On December 12, 2025, the MongoDB Security Engineering team disclosed a high-severity vulnerability in MongoDB that allows unauthenticated memory disclosure. The issue is tracked as CVE-2025-14847 and has a CVSS score of 8.7 and was quickly nicknamed MongoBleed in the security community due to the way it exposes server memory. Technical Details MongoDB uses a”¦

First seen on securityboulevard.com

Jump to article: securityboulevard.com/2026/01/mongobleed-unauthenticated-memory-disclosure-in-mongodb-cve-2025-14847/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Critical SQL Injection Vulnerability in Apache Traffic Control Rated 9.9 CVSS, Patch Now
  2. Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software
  3. Researchers Find CVSS 10.0 Severity RCE Vulnerability in Erlang/OTP SSH
  4. CVE-2025-32433 betrifft alle Versionen bis OTP 27.3.2 10-Schwachstelle in Erlang/OTP-SSH