{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2025-6712","assignerOrgId":"a39b4221-9bd0-4244-95fc-f3e2e07f1deb","state":"PUBLISHED","assignerShortName":"mongodb","dateReserved":"2025-06-26T11:48:56.095Z","datePublished":"2025-07-07T14:44:38.183Z","dateUpdated":"2025-07-07T14:53:47.097Z"},"containers":{"cna":{"affected":[{"cpes":["cpe:2.3:a:mongodb:mongodb:8.0.0:*:*:*:*:*:*:*","cpe:2.3:a:mongodb:mongodb:8.0.1:*:*:*:*:*:*:*","cpe:2.3:a:mongodb:mongodb:8.0.2:*:*:*:*:*:*:*","cpe:2.3:a:mongodb:mongodb:8.0.3:*:*:*:*:*:*:*","cpe:2.3:a:mongodb:mongodb:8.0.4:*:*:*:*:*:*:*","cpe:2.3:a:mongodb:mongodb:8.0.5:*:*:*:*:*:*:*","cpe:2.3:a:mongodb:mongodb:8.0.6:*:*:*:*:*:*:*","cpe:2.3:a:mongodb:mongodb:8.0.7:*:*:*:*:*:*:*","cpe:2.3:a:mongodb:mongodb:8.0.8:*:*:*:*:*:*:*","cpe:2.3:a:mongodb:mongodb:8.0.9:*:*:*:*:*:*:*"],"defaultStatus":"unaffected","product":"MongoDB Server","vendor":"MongoDB Inc","versions":[{"lessThan":"8.0.10","status":"affected","version":"8.0","versionType":"custom"}]}],"datePublic":"2025-07-07T14:45:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>MongoDB Server may be susceptible to disruption caused by high memory usage, potentially leading to server crash. This condition is linked to inefficiencies in memory management related to internal operations. In scenarios where certain internal processes persist longer than anticipated, memory consumption can increase, potentially impacting server stability and availability. This issue affects MongoDB Server v8.0 versions prior to 8.0.10</p>"}],"value":"MongoDB Server may be susceptible to disruption caused by high memory usage, potentially leading to server crash. This condition is linked to inefficiencies in memory management related to internal operations. In scenarios where certain internal processes persist longer than anticipated, memory consumption can increase, potentially impacting server stability and availability. This issue affects MongoDB Server v8.0 versions prior to 8.0.10"}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":6.5,"baseSeverity":"MEDIUM","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-400","description":"CWE-400: Uncontrolled Resource Consumption","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"a39b4221-9bd0-4244-95fc-f3e2e07f1deb","shortName":"mongodb","dateUpdated":"2025-07-07T14:45:55.924Z"},"references":[{"url":"https://jira.mongodb.org/browse/SERVER-106751"}],"source":{"discovery":"EXTERNAL"},"title":"MongoDB Server may be susceptible to DoS due to Accumulated Memory Allocation","x_generator":{"engine":"Vulnogram 0.2.0"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-07-07T14:53:35.680320Z","id":"CVE-2025-6712","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-07-07T14:53:47.097Z"}}]}}