Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
MongoDb Missing Authorization Vulnerability - CVE-2025-13643 - Vulnerability Database
MongoDb

MongoDb Missing Authorization Vulnerability - CVE-2025-13643

Medium
Reference: CVE-2025-13643
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2025-13643
Title: MongoDb Missing Authorization Vulnerability
Overview:

A user with access to the cluster with a limited set of privilege actions may be able to terminate queries that are being executed by other users. This may cause a denial of service by preventing a fraction of queries from successfully completing. This issue affects MongoDB Server v7.0 versions prior to 7.0.26 and MongoDB Server v8.0 versions prior to 8.0.14