216.73.216.170

CVE-2025-13643

· Published 25/11/2025 06:15 · Modified 11/12/2025 23:20

Labels: CVE-2025-13643 2025-11-25CVE-2025-13643CWE-862[email protected]

Essential information

Published
25/11/2025 06:15
Modified
11/12/2025 23:20
Author
Creator
CVSS
2.3 LOW (v3) 2.3 LOW (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A user with access to the cluster with a limited set of privilege actions may be able to terminate queries that are being executed by other users. This may cause a denial of service by preventing a fraction of queries from successfully completing. This issue affects MongoDB Server v7.0 versions prior to 7.0.26 and MongoDB Server v8.0 versions prior to 8.0.14

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
mongodb / mongodb cpe:2.3:a:mongodb:mongodb:*:*:*:*:-:*:*:*
mongodb / mongodb cpe:2.3:a:mongodb:mongodb:*:*:*:*:-:*:*:*
mongodb / mongodb cpe:2.3:a:mongodb:mongodb:8.2.0:alpha:*:*:-:*:*:*
mongodb / mongodb cpe:2.3:a:mongodb:mongodb:8.2.0:alpha0:*:*:-:*:*:*
mongodb / mongodb cpe:2.3:a:mongodb:mongodb:8.2.0:alpha1:*:*:-:*:*:*
mongodb / mongodb cpe:2.3:a:mongodb:mongodb:8.2.0:alpha2:*:*:-:*:*:*

References