Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/07/09 3:14 p.m.3 views

CVE-2025-6713

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS6.1AI score0.00336EPSS
Exploits0References1
OSV
OSV
added 2025/07/07 3:15 p.m.3 views

CVE-2025-6713

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

6.5CVSS6.8AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/07 2:46 p.m.6 views

CVE-2025-6713 MongoDB Server may be susceptible to privilege escalation due to $mergeCursors stage

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS6.1AI score0.00336EPSS
Exploits0References1
MongoDB
MongoDB
added 2025/07/07 2:45 p.m.14 views

MongoDB Server may be susceptible to privilege escalation due to $mergeCursors stage

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

7.7CVSS6.9AI score0.00336EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder