CVE-2025-1756 | MongoDB mongosh up to 2.2.x File C:node_modules untrusted search path (RHSA-2025:1756)

Inserito da Angelo Barbosa | Feb 27, 2025 | CVE

A vulnerability, which was classified as critical, has been found in MongoDB mongosh up to 2.2.x. Affected by this issue is some unknown functionality of the file C:node_modules of the component File Handler. The manipulation leads to untrusted search path.

This vulnerability is handled as CVE-2025-1756. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-1756 | MongoDB mongosh up to 2.2.x File C:node_modules untrusted search path (RHSA-2025:1756)

Post correlati

CVE-2024-34411 | Thomas Scholl canvasio3D Light Plugin up to 2.5.0 on WordPress unrestricted upload

CVE-2024-29057 | Microsoft Edge prior 123.0.2420.53 unknown vulnerability

CVE-2025-27092 | cmu-sei GHOSTS prior 8.2.7.90 /api/npcs/{id}/photo photoLink path traversal (GHSA-qr67-m6w9-wj3j)

CVE-2025-26533 | Moodle up to 4.1.15/4.3.9/4.4.5/4.5.1 Module List Filter sql injection