MongoDB Server security update for CVE-2025-14847
Security Patch Release
Summary
Hide ▲
Show ▼
MongoDB released safe versions for CVE-2025-14847 (MongoBleed), a flaw that is actively exploited in the wild and can expose secrets from MongoDB Server instances. The update covers affected self-hosted releases and notes that MongoDB Atlas customers were auto-patched. Administrators who cannot upgrade immediately are told to disable zlib compression on the server.
Related Happenings
Drupal core security update for CVE-2026-9082
Security Patch Release
First: 22.05.2026 16:14
Last: 22.05.2026 16:14
Sources 1
About this happening:
**Drupal** released security updates for **CVE-2026-9082**, a highly critical SQL injection flaw affecting **PostgreSQL**-backed sites, and urged administrators to **upgrade immed...
Drupal core security update for CVE-2026-9082
Security Patch ReleaseAbout this happening: **Drupal** released security updates for **CVE-2026-9082**, a highly critical SQL injection flaw affecting **PostgreSQL**-backed sites, and urged administrators to **upgrade immed...
TrendAI Trend Micro’s enterprise business security patch release for CVE-2026-34926
Security Patch Release
First: 22.05.2026 11:19
Last: 22.05.2026 11:19
Sources 1
About this happening:
**TrendAI** released **Apex One** security updates after confirming a **zero-day** had been **exploited in the wild**, leaving **on-premises installations** at risk until patched....
TrendAI Trend Micro’s enterprise business security patch release for CVE-2026-34926
Security Patch ReleaseAbout this happening: **TrendAI** released **Apex One** security updates after confirming a **zero-day** had been **exploited in the wild**, leaving **on-premises installations** at risk until patched....
Avada Builder 3.15.3 patch release (CVE-2026-4782, CVE-2026-4798)
Security Patch Release
First: 15.05.2026 18:56
Last: 15.05.2026 18:56
Sources 1
About this happening:
**Avada Builder** shipped **version 3.15.3** as the full fix for **CVE-2026-4782** and **CVE-2026-4798**, closing the plugin flaws that could expose files and database data. A pri...
Avada Builder 3.15.3 patch release (CVE-2026-4782, CVE-2026-4798)
Security Patch ReleaseAbout this happening: **Avada Builder** shipped **version 3.15.3** as the full fix for **CVE-2026-4782** and **CVE-2026-4798**, closing the plugin flaws that could expose files and database data. A pri...
Linux kernel Dirty Frag patch release (CVE-2026-43284, CVE-2026-43500)
Security Patch Release
First: 11.05.2026 17:30
Last: 11.05.2026 17:30
Sources 1
About this happening:
**Major Linux distributions** are rolling out fixes for **Dirty Frag**, the **Linux kernel** patch release that covers **CVE-2026-43284** and **CVE-2026-43500**. The update matter...
Linux kernel Dirty Frag patch release (CVE-2026-43284, CVE-2026-43500)
Security Patch ReleaseAbout this happening: **Major Linux distributions** are rolling out fixes for **Dirty Frag**, the **Linux kernel** patch release that covers **CVE-2026-43284** and **CVE-2026-43500**. The update matter...
CPanel security patch release for CVE-2026-29201
Security Patch Release
First: 09.05.2026 10:16
Last: 09.05.2026 10:16
Sources 1
About this happening:
**cPanel** released updates for **cPanel and Web Host Manager (WHM)** to fix **three vulnerabilities** that could enable **privilege escalation**, **code execution**, or **denial-...
CPanel security patch release for CVE-2026-29201
Security Patch ReleaseAbout this happening: **cPanel** released updates for **cPanel and Web Host Manager (WHM)** to fix **three vulnerabilities** that could enable **privilege escalation**, **code execution**, or **denial-...
Timeline
-
28.12.2025 22:38 2 articles · 4mo ago
MongoDB releases safe versions for CVE-2025-14847
Mitigation Patch UpdateMongoDB made safe releases available for self-hosted servers affected by CVE-2025-14847, recommending administrators upgrade to 8.2.3, 8.0.17, 7.0.28, 6.0.27, 5.0.32, or 4.4.30. The vendor said there is no workaround and that customers who cannot upgrade should disable zlib compression on the server; MongoDB Atlas customers were patched automatically.
Show sources
- Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed — www.bleepingcomputer.com — 28.12.2025 22:38
- Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed — www.bleepingcomputer.com — 28.12.2025 22:38
-
28.12.2025 22:38 1 articles · 4mo ago
MongoBleed detection guidance and log-based indicators
Detection Ioc UpdateRecon InfoSec co-founder Eric Capuano advised organizations to check for signs of compromise and described a detection pattern that looks for a source IP with hundreds or thousands of connections but zero metadata events. Florian Roth used that research to create the MongoBleed Detector, which parses MongoDB logs to identify potential exploitation of CVE-2025-14847.
Show sources
- Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed — www.bleepingcomputer.com — 28.12.2025 22:38
-
28.12.2025 22:38 1 articles · 4mo ago
MongoBleed exploitation and exposed MongoDB servers
Initial DisclosureMongoBleed (CVE-2025-14847) is being actively exploited in the wild against exposed MongoDB Server instances, and a public proof-of-concept shows how attackers can remotely extract secrets, credentials, and other sensitive in-memory data before authentication. Censys said more than 87,000 potentially vulnerable MongoDB instances were exposed on the public internet as of December 27, and Wiz reported that 42% of visible systems had at least one MongoDB instance in a version vulnerable to CVE-2025-14847.
Show sources
- Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed — www.bleepingcomputer.com — 28.12.2025 22:38