December 27, 2025 – CyberGate

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. The vulnerability, tracked as CVE-2025-14847 (CVSS score: 8.7), has been described as a case of improper handling of length parameter inconsistency,

Citește mai departe

Day: December 27, 2025

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

Recent News

Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data

GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs

Browser Extensions Are the New AI Consumption Channel That No One Is Talking About

Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows

Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure

Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers

EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets

UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns

ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

The Hidden Security Risks of Shadow AI in Enterprises