Lucene search
+L

4 matches found

nvd
nvd
added 2025/07/07 3:15 p.m.11 views

CVE-2025-6713

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS0.00336EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2025/07/07 3:15 p.m.5 views

CVE-2025-6713

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS5.9AI score0.00336EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/07/07 2:46 p.m.7 views

CVE-2025-6713 MongoDB Server may be susceptible to privilege escalation due to $mergeCursors stage

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS6.1AI score0.00336EPSS
Exploits0References1
cvelist
cvelist
added 2025/07/07 2:46 p.m.11 views

CVE-2025-6713 MongoDB Server may be susceptible to privilege escalation due to $mergeCursors stage

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS0.00336EPSS
Exploits0References1
Rows per page
Query Builder