CVE-2025-6711
published 2025-07-07CVE-2025-6711: An issue has been identified in MongoDB Server where unredacted queries may inadvertently appear in server logs when certain error conditions are encountered…
PriorityP426medium4.9CVSS 3.1
AVNACLPRHUINSUCHINAN
EPSS
0.24%
14.8th percentile
An issue has been identified in MongoDB Server where unredacted queries may inadvertently appear in server logs when certain error conditions are encountered. This issue affects MongoDB Server v8.0 versions prior to 8.0.5, MongoDB Server v7.0 versions prior to 7.0.18 and MongoDB Server v6.0 versions prior to 6.0.21.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mongodb | mongodb | >= 6.0.0 < 6.0.21 | 6.0.21 |
| mongodb | mongodb | >= 7.0.0 < 7.0.18 | 7.0.18 |
| mongodb | mongodb | >= 8.0.0 < 8.0.5 | 8.0.5 |
| mongodb_inc | mongodb_server | >= 6.0 < 6.0.21 | 6.0.21 |
| mongodb_inc | mongodb_server | >= 7.0 < 7.0.18 | 7.0.18 |
| mongodb_inc | mongodb_server | >= 8.0 < 8.0.5 | 8.0.5 |
CVSS provenance
nvdv3.14.9MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
osv4.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
CVE-2025-6711: An issue has been identified in MongoDB Server where unredacted queries may inadvertently appear in server logs when certain error conditions are enco
osv·2025-07-07·CVSS 4.9
CVE-2025-6711 [MEDIUM] CVE-2025-6711: An issue has been identified in MongoDB Server where unredacted queries may inadvertently appear in server logs when certain error conditions are enco
An issue has been identified in MongoDB Server where unredacted queries may inadvertently appear in server logs when certain error conditions are encountered. This issue affects MongoDB Server v8.0 versions prior to 8.0.5, MongoDB Server v7.0 versions prior to 7.0.18 and MongoDB Server v6.0 versions prior to 6.0.21.
GHSA
GHSA-2844-pfq3-9x4m: An issue has been identified in MongoDB Server where unredacted queries may inadvertently appear in server logs when certain error conditions are enco
ghsa_unreviewed·2025-07-07
CVE-2025-6711 [MEDIUM] CWE-532 GHSA-2844-pfq3-9x4m: An issue has been identified in MongoDB Server where unredacted queries may inadvertently appear in server logs when certain error conditions are enco
An issue has been identified in MongoDB Server where unredacted queries may inadvertently appear in server logs when certain error conditions are encountered. This issue affects MongoDB Server v8.0 versions prior to 8.0.5, MongoDB Server v7.0 versions prior to 7.0.18 and MongoDB Server v6.0 versions prior to 6.0.21.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-07-07
Published