NOMISEC-onewinner/CVE-2025-14847

NOMISEC SCANNER

Exploit for CVE-2025-14847 - MongoDB Memory Disclosure (CVE-2025-14847) - Mongobleed

AI Analysis

This repository contains a Go-based scanner for detecting CVE-2025-14847, a MongoDB Zlib compression protocol memory leak vulnerability. It checks for vulnerable versions, Zlib support, and attempts to extract leaked heap memory data.

Attack Type

info_leak

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1003 - OS Credential Dumping T1040 - Network Sniffing

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type infoleak

Files 9

https://github.com/onewinner/CVE-2025-14847

Stars 11

Forks 2

Last Push Dec 26, 2025

Authors

onewinner

Vulnerability

CVE-2025-14847

MongoDB Memory Disclosure (CVE-2025-14847) - Mongobleed

HIGH KEV

CVSS 7.5