Security News

Cybersecurity news aggregator

🔓
HIGH Vulnerabilities HKCERT

MongoDB Multiple Vulnerabilities

cve-2025-1234data-leaksoftware-flawmitre-ta0001mitre-t1190
  • Multiple vulnerabilities in MongoDB allow a remote attacker to trigger data manipulation, denial of service, and security restriction bypass. Affected versions include MongoDB Server 7.0.0 prior to 7.0.32, 8.0.0 prior to 8.0.21, 8.1.* and prior versions, and 8.2.0 prior to 8.2.7. The solution is to apply the vendor's fixes by upgrading to the patched versions specified in their security alert.
Read Full Article →

Multiple vulnerabilities were identified in MongoDB. A remote attacker could exploit some of these vulnerabilities to trigger data manipulation, denial of service condition and security restriction bypass on the targeted system. Impact Denial of Service Data Manipulation Security Restriction Bypass System / Technologies affected MongoDB Server 7.0.0 versions prior to 7.0.32 MongoDB Server 8.0.0 versions prior to 8.0.21 MongoDB Server 8.1.* and prior versions MongoDB Server 8.2.0 versions prior to 8.2.7 Solutions Before installation of the software, please visit the vendor web-site for more details. Apply fixes issued by the vendor: https://www.mongodb.com/resources/products/alerts#security

Related Articles

HIGH Samsung Products Multiple Vulnerabilities HKCERT HIGH Apple Products Multiple Vulnerabilities HKCERT MEDIUM USN-8190-2: Rack::Session vulnerability Ubuntu Security HIGH A YC-Backed Startup Left Production AWS Keys Public for 5 Months. Reddit r/netsec
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn