MongoBleed (CVE-2025-14847) exploited in the wild: everything you need to know

CVE-2025-14847 (MongoBleed) is a high-severity unauthenticated info-leak in MongoDB’s zlib decompression that can expose in-memory data to remote attackers; it affects many supported and legacy MongoDB versions, has had public exploits and confirmed internet-exposed instances, and requires immediate patching or disabling zlib compression and network exposure mitigation.