CVE-2025-1756 | MongoDB mongosh up to 2.2.x File C:node_modules untrusted search path (RHSA-2025:1756)

Inserito da Angelo Barbosa | Feb 27, 2025 | CVE

A vulnerability, which was classified as critical, has been found in MongoDB mongosh up to 2.2.x. Affected by this issue is some unknown functionality of the file C:node_modules of the component File Handler. The manipulation leads to untrusted search path.

This vulnerability is handled as CVE-2025-1756. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-1756 | MongoDB mongosh up to 2.2.x File C:node_modules untrusted search path (RHSA-2025:1756)

Post correlati

CVE-2024-26749 | Linux Kernel up to 6.7.6 cdns3 cdns3_gadget_ep_disable use after free

CVE-2023-6193 | Cloudflare quiche up to 0.19.0 QUIC Path Validation resource consumption

CVE-2023-34990 | Fortinet FortiWLM up to 8.5.4/8.6.5 Web Request path traversal (FG-IR-23-144)

CVE-2021-4432 | PCMan FTP Server 2.0.7 USER Command denial of service (ID 163104)