Following information is expected to be available and accurate in a file named .env with values different than the ones shown: MONGODB_CONNECTION_TEMPLATE='fmorrison ...

Attackers are actively exploiting a critical vulnerability in MongoDB to steal sensitive information directly from an affected server's memory. The attacks appear to have started on Dec. 29, barely ...

Dubbed MongoBleed, the high-severity flaw allows unauthenticated, remote attackers to leak sensitive information from MongoDB servers. Threat actors started exploiting a high-severity MongoDB ...

A recently disclosed security vulnerability in MongoDB has come under active exploitation in the wild, with over 87,000 potentially susceptible instances identified across the world. The vulnerability ...

A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited in the wild, with over 80,000 potentially vulnerable servers exposed on the ...

A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. The vulnerability, tracked as CVE-2025-14847 (CVSS score: 8.7), ...

Update 12/26/25: Article updated to correct that the flaw has not been officially classified as an RCE. MongoDB has warned IT admins to immediately patch a high-severity memory-read vulnerability that ...

Google is testing extremely long and expandable search result snippet descriptions in the search results. These are also AI-generated snippets, which we've seen before, but not this long. This goes on ...

Send a note to Doug Wintemute, Kara Coleman Fields and our other editors. We read every email. By submitting this form, you agree to allow us to collect, store, and potentially publish your provided ...

MongoDB surpassed third-quarter expectations and lifted its forecast as it benefits from AI and its Atlas platform gains popularity. CEO Chirantan "CJ" Desai said the company is approaching a "once in ...

Dev Ittycheria, who took MongoDB public in 2017, is stepping down as CEO. He's being replaced by Cloudflare executive Chirantan "CJ" Desai, effective Nov. 10. Desai spent the past year as Cloudflare's ...