Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

CISA orders FCEB patching for MongoBleed

Public Sector Action
First reported
Last updated
Happening score
H score 50
1 unique sources, 1 articles

Summary

Hide ▲

CISA ordered FCEB agencies to patch CVE-2025-14847 after confirming it was actively exploited in attacks, creating an urgent remediation requirement for federal systems. The order gives agencies three weeks to comply, with a deadline of January 19, 2026. The flaw can expose credentials, API and cloud keys, session tokens, logs, and PII. If patching is not immediately possible, defenders are told to disable zlib compression or apply vendor mitigations.

Related Happenings

Langflow and Trend Micro Apex One exploited flaws (multiple vulnerabilities)

Vulnerability
First: 22.05.2026 08:47 Last: 22.05.2026 08:47 Sources 1

About this happening: **CISA** added **CVE-2025-34291** in **Langflow** and **CVE-2026-34926** in **Trend Micro Apex One** to the **KEV catalog** after evidence of **active exploitation**. The Langflow...

Open Happening

CISA KEV order for Copy Fail on federal Linux devices

Public Sector Action
First: 08.05.2026 10:45 Last: 08.05.2026 10:45 Sources 1

About this happening: **CISA** added **Copy Fail** to the **Known Exploited Vulnerabilities (KEV) Catalog**, making the Linux flaw a federal remediation priority. The agency ordered **federal agencies*...

Open Happening

CISA KEV action for CVE-2026-31431 and FCEB remediation

Public Sector Action
First: 03.05.2026 09:26 Last: 03.05.2026 09:26 Sources 1

About this happening: CISA added **CVE-2026-31431** to its **KEV catalog**, putting **Federal Civilian Executive Branch (FCEB)** agencies on notice to remediate an actively exploited Linux privilege-es...

Open Happening

CISA KEV listing and FCEB ActiveMQ patch order

Public Sector Action
First: 17.04.2026 12:30 Last: 17.04.2026 12:30 Sources 1

About this happening: **CISA** added **CVE-2026-34197** to the **KEV Catalog** and ordered **FCEB** agencies to patch **Apache ActiveMQ** servers within **two weeks**. The directive sets a hard **April...

Open Happening

CISA KEV listing and FCEB patch order for Ivanti EPMM

Public Sector Action
First: 08.04.2026 21:15 Last: 08.04.2026 21:15 Sources 1

About this happening: **CISA** added **CVE-2026-1340** to the **KEV Catalog** and ordered **FCEB agencies** to patch **Ivanti Endpoint Manager Mobile (EPMM)** by **Saturday midnight, April 11**, forcin...

Open Happening

Timeline

  1. 30.12.2025 16:40 1 articles · 4mo ago

    MongoDB patches CVE-2025-14847 MongoBleed

    Technical Analysis Update

    MongoDB Server CVE-2025-14847, dubbed MongoBleed, was patched on December 19, 2025 after a flaw in network packet processing that uses the zlib library for data compression was identified; successful exploitation can let unauthenticated attackers remotely steal credentials, API and/or cloud keys, session tokens, internal logs, and personally identifiable information (PII).

    Show sources
    Open in new tab
  2. 30.12.2025 16:40 2 articles · 4mo ago

    CISA orders federal patching for MongoBleed

    Legal Policy Action Update

    CISA confirmed Wiz's finding that MongoBleed was exploited in the wild, Shadowserver reported more than 74,000 Internet-exposed potentially vulnerable MongoDB instances, Censys tracked over 87,000 IP addresses fingerprinted as possibly unpatched MongoDB versions, and CISA ordered Federal Civilian Executive Branch agencies to patch vulnerable systems by January 19, 2026 or disable zlib compression when immediate patching is not possible.

    Show sources
    Open in new tab