5 matches found
📄 MongoDB BSON Decompression OP_COMPRESSED Memory Disclosure
This Metasploit module demonstrates an educational memory leak in MongoDB BSON decompression. It sends malformed BSON in OPCOMPRESSED messages to trigger memory disclosure. Quite a huge list of versions are affected...
Exploit for CVE-2025-14847
MongoBLEED---CVE-2025-14847-POC- This repo contains my python...
Security Bulletin: Ceilometer database access unrestricted in PowerVC (CVE-2015-1937)
Summary IBM PowerVC is using a ceilometer database that does not have authentication enabled. Vulnerability Details CVEID: CVE-2015-1937 DESCRIPTION: IBM PowerVC NoSQL database used by ceilometer is listening on the remote port and is configured to allow connections without any authentication. A...
IBM PowerVC Elevation of Privilege Vulnerability
IBM PowerVC is a suite of virtualization management solutions. The solution supports virtual system management, virtual image management and deployment, and virtual workload management. The IBM PowerVC ceilometer NoSQL database does not require authentication to be performed, and an elevation of...
40,000 UnProtected MongoDB Databases Found on the Internet
Nearly 40,000 organisations running MongoDB, a NoSQL high performance and cross-platform document-oriented database, are found to be unprotected and vulnerable to hackers. Three students from University of Saarland in Germany at the Centre for IT Security – Kai Greshake, Eric Petryka and Jens...