{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-6712", "assignerOrgId": "a39b4221-9bd0-4244-95fc-f3e2e07f1deb", "state": "PUBLISHED", "assignerShortName": "mongodb", "dateReserved": "2025-06-26T11:48:56.095Z", "datePublished": "2025-07-07T14:44:38.183Z", "dateUpdated": "2025-07-07T14:53:47.097Z"}, "containers": {"cna": {"affected": [{"cpes": ["cpe:2.3:a:mongodb:mongodb:8.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.5:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.7:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.8:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.9:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "product": "MongoDB Server", "vendor": "MongoDB Inc", "versions": [{"lessThan": "8.0.10", "status": "affected", "version": "8.0", "versionType": "custom"}]}], "datePublic": "2025-07-07T14:45:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>MongoDB Server may be susceptible to disruption caused by high memory usage, potentially leading to server crash. This condition is linked to inefficiencies in memory management related to internal operations. In scenarios where certain internal processes persist longer than anticipated, memory consumption can increase, potentially impacting server stability and availability. This issue affects MongoDB Server v8.0 versions prior to 8.0.10</p>"}], "value": "MongoDB Server may be susceptible to disruption caused by high memory usage, potentially leading to server crash. This condition is linked to inefficiencies in memory management related to internal operations. In scenarios where certain internal processes persist longer than anticipated, memory consumption can increase, potentially impacting server stability and availability. This issue affects MongoDB Server v8.0 versions prior to 8.0.10"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-400", "description": "CWE-400: Uncontrolled Resource Consumption", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "a39b4221-9bd0-4244-95fc-f3e2e07f1deb", "shortName": "mongodb", "dateUpdated": "2025-07-07T14:45:55.924Z"}, "references": [{"url": "https://jira.mongodb.org/browse/SERVER-106751"}], "source": {"discovery": "EXTERNAL"}, "title": "MongoDB Server may be susceptible to DoS due to Accumulated Memory Allocation", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-07-07T14:53:35.680320Z", "id": "CVE-2025-6712", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-07T14:53:47.097Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-6712", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-07-07T14:53:35.680320Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-07T14:53:39.112Z"}}], "cna": {"title": "MongoDB Server may be susceptible to DoS due to Accumulated Memory Allocation", "source": {"discovery": "EXTERNAL"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"cpes": ["cpe:2.3:a:mongodb:mongodb:8.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.4:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.5:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.7:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.8:*:*:*:*:*:*:*", "cpe:2.3:a:mongodb:mongodb:8.0.9:*:*:*:*:*:*:*"], "vendor": "MongoDB Inc", "product": "MongoDB Server", "versions": [{"status": "affected", "version": "8.0", "lessThan": "8.0.10", "versionType": "custom"}], "defaultStatus": "unaffected"}], "datePublic": "2025-07-07T14:45:00.000Z", "references": [{"url": "https://jira.mongodb.org/browse/SERVER-106751"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "MongoDB Server may be susceptible to disruption caused by high memory usage, potentially leading to server crash. This condition is linked to inefficiencies in memory management related to internal operations. In scenarios where certain internal processes persist longer than anticipated, memory consumption can increase, potentially impacting server stability and availability. This issue affects MongoDB Server v8.0 versions prior to 8.0.10", "supportingMedia": [{"type": "text/html", "value": "<p>MongoDB Server may be susceptible to disruption caused by high memory usage, potentially leading to server crash. This condition is linked to inefficiencies in memory management related to internal operations. In scenarios where certain internal processes persist longer than anticipated, memory consumption can increase, potentially impacting server stability and availability. This issue affects MongoDB Server v8.0 versions prior to 8.0.10</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-400", "description": "CWE-400: Uncontrolled Resource Consumption"}]}], "providerMetadata": {"orgId": "a39b4221-9bd0-4244-95fc-f3e2e07f1deb", "shortName": "mongodb", "dateUpdated": "2025-07-07T14:45:55.924Z"}}}, "cveMetadata": {"cveId": "CVE-2025-6712", "state": "PUBLISHED", "dateUpdated": "2025-07-07T14:53:47.097Z", "dateReserved": "2025-06-26T11:48:56.095Z", "assignerOrgId": "a39b4221-9bd0-4244-95fc-f3e2e07f1deb", "datePublished": "2025-07-07T14:44:38.183Z", "assignerShortName": "mongodb"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "MongoDB Server may be susceptible to disruption caused by high memory usage, potentially leading to server crash. This condition is linked to inefficiencies in memory management related to internal operations. In scenarios where certain internal processes persist longer than anticipated, memory consumption can increase, potentially impacting server stability and availability. This issue affects MongoDB Server v8.0 versions prior to 8.0.10"}, {"lang": "es", "value": "MongoDB Server puede ser susceptible a interrupciones causadas por un alto uso de memoria, lo que podr\u00eda provocar un bloqueo del servidor. Esta condici\u00f3n est\u00e1 relacionada con ineficiencias en la gesti\u00f3n de memoria relacionadas con las operaciones internas. En escenarios donde ciertos procesos internos persisten m\u00e1s de lo previsto, el consumo de memoria puede aumentar, lo que podr\u00eda afectar la estabilidad y la disponibilidad del servidor. Este problema afecta a las versiones 8.0 y anteriores a la 8.0.10 de MongoDB Server."}], "id": "CVE-2025-6712", "lastModified": "2025-07-08T16:18:34.923", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "cna@mongodb.com", "type": "Secondary"}]}, "published": "2025-07-07T15:15:28.890", "references": [{"source": "cna@mongodb.com", "url": "https://jira.mongodb.org/browse/SERVER-106751"}], "sourceIdentifier": "cna@mongodb.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-400"}], "source": "cna@mongodb.com", "type": "Secondary"}]}

{}