CVE-2025-12893

🗓️ 25 Nov 2025 05:07:17Reported by mongodbType

Improper EKU validation lets TLS handshakes succeed with invalid EKU on MongoDB; Windows Apple affected.

Reporter	Title	Published	Views	Family All 16
CNNVD	MongoDB Server 安全漏洞	25 Nov 202500:00	–	cnnvd
Cvelist	CVE-2025-12893 Improper Certificate Validation May Allow Successful TLS Handshaking Despite Invalid Extended Key Usage Fields in MongoDB Server	25 Nov 202505:07	–	cvelist
FreeBSD	MongoDB Server -- Improper Certificate Validation	25 Nov 202500:00	–	freebsd
EUVD	EUVD-2025-199532	25 Nov 202505:07	–	euvd
Tenable Nessus	FreeBSD : MongoDB Server -- Improper Certificate Validation (d2f2c691-cd42-11f0-85d4-b42e991fc52e)	3 Dec 202500:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2025-12893	1 Dec 202500:00	–	nessus
MongoDB	Improper Certificate Validation May Allow Successful TLS Handshaking Despite Invalid Extended Key Usage Fields in MongoDB Server	25 Nov 202505:07	–	mongodb
NVD	CVE-2025-12893	25 Nov 202505:15	–	nvd
OSV	BIT-MONGODB-2025-12893 Improper Certificate Validation May Allow Successful TLS Handshaking Despite Invalid Extended Key Usage Fields in MongoDB Server	6 Dec 202511:42	–	osv
OSV	MINI-CX34-RXWW-2WCW	6 Dec 202515:15	–	osv

NVD

Node

mongodb mongodbRange7.0.0–7.0.26-

mongodb mongodbRange8.0.0–8.0.16-

mongodb mongodbRange8.2.0–8.2.2-

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "MacOS",
      "Windows"
    ],
    "product": "MongoDB Server",
    "vendor": "MongoDB Inc.",
    "versions": [
      {
        "lessThan": "7.0.26",
        "status": "affected",
        "version": "7.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.0.16",
        "status": "affected",
        "version": "8.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.2.2",
        "status": "affected",
        "version": "8.2",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
jira	www.jira.mongodb.org/browse/SERVER-105783

05 Dec 2025 20:26Current

6Medium risk

Vulners AI Score6

CVSS 3.14.2 - 5.4

CVSS 42.3

EPSS0.00023

SSVC

CWE-295