Known exploited
MongoDB
CVE published 2025-12-29
CVE-2025-14847
CVE-2025-14847 is a MongoDB and MongoDB Server vulnerability described as an improper handling of length parameter inconsistency issue. CISA has placed it in the Known Exploited Vulnerabilities catalog, which means defenders should treat it as actively important and prioritize mitigation based on vendor guidance.