The Hacker News

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

High-severity CVE-2025-14847 allows unauthenticated attackers to read uninitialized heap memory in MongoDB due to a zlib ...
InfoWorld

High severity flaw in MongoDB could allow memory leakage

Document database vendor MongoDB has advised customers to update immediately following the discovery of a flaw that could ...
Dark Reading

Critical 'MongoBleed' Bug Under Attack, Patch Now

The memory leak security vulnerability allows unauthenticated attackers to extract passwords and tokens from MongoDB servers.
SecurityWeek

Fresh MongoDB Vulnerability Exploited in Attacks

Hackers are exploiting CVE-2025-14847, aka MongoBleed, a MongoDB vulnerability, to leak sensitive information from server ...

MongoDB: Critical Security Vulnerability in NoSQL Database

MongoDB warns of a critical security vulnerability affecting recent versions. Admins should patch immediately.

A Critical MongoDB Flaw Leaks Secrets From Tens of Thousands of Servers

A newly disclosed security flaw in MongoDB leading to the exposure of over 87,000 potentially vulnerable servers on the ...

Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed

A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited ...
The Hacker News

MongoDB Vulnerability CVE-2025-14847 Under Active Exploitation Worldwide

A critical MongoDB flaw, CVE-2025-14847, is under active exploitation, allowing unauthenticated data leaks from 87,000+ ...
TechJuice

Critical MongoDB Vulnerability Exposes Servers to Attack

A critical MongoDB vulnerability allows unauthenticated access to databases, raising urgent security risks for exposed ...

"MongoBleed": Exploit for critical vulnerability in MongoDB makes attacks easier

Those responsible for a MongoDB instance cannot rest easy: an exploit for a critical vulnerability makes upgrades even more ...