A high-severity unauthenticated information-leak vulnerability in MongoDB Server, dubbed MongoBleed after the infamous Heartbleed bug, is now being actively exploited in real-world attacks. MongoDB has disclosed CVE-2025-14847, a critical flaw affecting multiple supported and legacy server versions that allows unauthenticated remote attackers to exfiltrate sensitive data and authentication credentials from vulnerable instances. MongoBleed stems from […]
The post MongoBleed (CVE-2025-14847) Now Exploited in the Wild: MongoDB Servers at Critical Risk appeared first on Cyber Security News.
This article has been indexed from Cyber Security News
Read the original article: