[Warning] MongoDB Vulnerability Comes Under Attack

[Brown Wolf]

HackerNews reported that a newly disclosed security vulnerability in MongoDB has been actively exploited in the wild, with over 87,000 potentially susceptible instances identified worldwide. The vulnerability in question is CVE-2025-14847 (CVSS score: 8.7), which allows an unauthenticated attacker to remotely leak sensitive data from the MongoDB server memory. It has been codenamed MongoBleed. The exact details surrounding the nature of attacks exploiting the flaw are presently unknown. Users are advised to update to MongoDB versions 8.2.3, 8.0.17, 7.0.28, 6.0.27, 5.0.32, and 4.4.30. Data from attack surface management company Censys shows that there are more than 87,000 potentially vulnerable instances, with a majority of them located in the U.S., China, Germany, India, and France. Wiz noted that 42% of cloud environments have at least one instance of MongoDB in a version vulnerable to CVE-2025-14847. This includes both internet-exposed and internal resources.

1 - https://thehackernews.com/2025/12/weekly-recap-mongodb-attacks-wallet.html
2 - https://thehackernews.com/2025/12/mongodb-vulnerability-cve-2025-14847.html

[NotATether]

NoSQL just means NoPeaceAndQuiet at this point. Stick with a MySQL database or Postgres and harden it, and then you can stop exposing your databases to the public internet.

Other than that I don't see how this has anything to do with crypto, which as far as I know does not use a NoSQL database of any sort.