MongoDB Unauthenicated Uninitialized Heap Memory Leak (MongoBleed) (CVE-2025-14847) (Direct Check)

Version 1.4

Feb 6, 2026, 12:54 AM

Required Scan configuration (Detected software that is considered a component of another application should only trigger vuln findings when the scan is running in paranoid mode. At this moment in time, this change affects only OpenSSL, Curl, LibCurl , SQLite, PHP, Apache HTTPD and Tomcat. Others may follow at a later date.)