National Cyber Warfare Foundation (NCWF)

MongoBleed: unauthenticated memory disclosure in MongoDB (CVE-2025-14847)
0 user ratings		2026-01-05 21:59:08
milo
Blue Team (CND)

On December 12, 2025, the MongoDB Security Engineering team disclosed a high-severity vulnerability in MongoDB that allows unauthenticated memory disclosure. The issue is tracked as CVE-2025-14847 and has a CVSS score of 8.7 and was quickly nicknamed MongoBleed in the security community due to the way it exposes server memory. Technical Details MongoDB uses a…


The post MongoBleed: unauthenticated memory disclosure in MongoDB (CVE-2025-14847) appeared first on Sentrium Security.


The post MongoBleed: unauthenticated memory disclosure in MongoDB (CVE-2025-14847) appeared first on Security Boulevard.



Tom Keech

Source: Security Boulevard
Source Link: https://securityboulevard.com/2026/01/mongobleed-unauthenticated-memory-disclosure-in-mongodb-cve-2025-14847/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Blue Team (CND)


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.