Primary

Context

MongoDB Windows Installation DLL Hijacking Vulnerability

Vulnerability

Patched

A vulnerability exists in the MongoDB Windows installation MSI, which may leave Access Control Lists (ACLs) unset on custom installation directories. This flaw allows a local attacker to execute arbitrary code within the MongoDB process through DLL hijacking. The issue is present in MongoDB Server versions 6.0 prior to 6.0.25, 7.0 prior to 7.0.21, and 8.0 prior to 8.0.5.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution within the MongoDB process, potentially allowing an attacker to manipulate MongoDB operations or access sensitive data managed by the database.

Remediation

Users can update to MongoDB Server versions 8.0.5, 7.0.21, or 6.0.25 to address this vulnerability.

Added: Sep 15, 2025, 7:30 PM

Updated: Sep 15, 2025, 7:30 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

3.5

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

3.5

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MongoDB Windows Installation DLL Hijacking Vulnerability

Vulnerability

Impact

Remediation

Affected Products

MongoDB Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating