MongoDB曝高危漏洞“MongoBleed” 开启网络访问且启用zlib压缩时攻击者无 ...

近日,网络安全领域传来一则重要消息,知名 NoSQL 数据库管理系统 MongoDB 被曝出现高危漏洞,这一漏洞引发了广泛关注。据悉,该漏洞已被标记为 CVE - 2025 - 14847,代号“MongoBleed”,其严重性不容小觑。

MongoDB 数据库管理系统出现高危漏洞,无需身份验证即可执行任意代码

IT之家 12 月 28 日消息,NoSQL 数据库管理系统 MongoDB 最近出现高危漏洞,目前官方已经发布新版本进行修复,使用 MongoDB、MongoDB Server 的开发者或 IT 管理员应立即升级到最新版本。
SecurityWeek

Fresh MongoDB Vulnerability Exploited in Attacks

Hackers are exploiting CVE-2025-14847, aka MongoBleed, a MongoDB vulnerability, to leak sensitive information from server ...
十轮网科技资讯 on MSN

MongoDB呼吁IT人员尽快修补高风险安全漏洞

拥有众多用户的NoSQL数据库管理系统MongoDB,其开发工程团队近期发布安全公告,他们发布重大更新修补安全漏洞CVE-2025-14847,攻击者可通过用户端来触发,此漏洞出现在MongoDB服务器的zlib实例,可能在用户未通过身份验证的情况下 ...

MongoDB warns admins to patch severe vulnerability immediately

MongoDB has warned IT admins to immediately patch a high-severity memory-read vulnerability that may be exploited by ...
Security Boulevard

Threat Actors Exploiting Critical ‘MongoBleed’ MongoDB Flaw

A high-severity flaw in MongoDB instances could allow unauthenticated remote bad actors to leak sensitive data from MongoDB servers. Dubbed "MongoBleed," the security flaw is being exploited in the ...
CSO Online

High severity flaw in MongoDB could allow memory leakage

Document database vendor MongoDB has advised customers to update immediately following the discovery of a flaw that could ...
The Hacker News

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

High-severity CVE-2025-14847 allows unauthenticated attackers to read uninitialized heap memory in MongoDB due to a zlib ...