Lucene search
K

4 matches found

NVD
NVD
added 2025/07/07 3:15 p.m.11 views

CVE-2025-6713

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS0.00336EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/07/07 3:15 p.m.4 views

CVE-2025-6713

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS5.9AI score0.00336EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/07 2:46 p.m.7 views

CVE-2025-6713 MongoDB Server may be susceptible to privilege escalation due to $mergeCursors stage

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS6.1AI score0.00336EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/07 2:46 p.m.11 views

CVE-2025-6713 MongoDB Server may be susceptible to privilege escalation due to $mergeCursors stage

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS0.00336EPSS
Exploits0References1
Rows per page
Query Builder