Hosted on MSN

Thousands of servers exposed as MongoBleed vulnerability exploited

MongoBleed (CVE-2025-14847) leaks sensitive data via uninitialized heap memory exploitation Roughly 87,000 exposed MongoDB instances vulnerable; most located in U.S., China, and Germany Patch released ...
The Hacker News

MongoDB Vulnerability CVE-2025-14847 Under Active Exploitation Worldwide

A recently disclosed security vulnerability in MongoDB has come under active exploitation in the wild, with over 87,000 potentially susceptible instances identified across the world. The vulnerability ...
The Hacker News

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. The vulnerability, tracked as CVE-2025-14847 (CVSS score: 8.7), ...
CSOonline

High severity flaw in MongoDB could allow memory leakage

Document database vendor MongoDB has advised customers to update immediately following the discovery of a flaw that could allow unauthenticated users to read uninitialized heap memory. Designated ...