Unrated severityNVD Advisory· Published Jul 7, 2025· Updated Jul 7, 2025

Incorrect Handling of incomplete data may prevent mongoS from Accepting New Connections

CVE-2025-6714

Description

MongoDB Server's mongos component can become unresponsive to new connections due to incorrect handling of incomplete data. This affects MongoDB when configured with load balancer support. This issue affects MongoDB Server v6.0 prior to 6.0.23, MongoDB Server v7.0 prior to 7.0.20 and MongoDB Server v8.0 prior to 8.0.9

Required Configuration:

This affects MongoDB sharded clusters when configured with load balancer support for mongos using HAProxy on specified ports.

Affected products

MongoDB/MongoDBv5
cpe:2.3:a:mongodb:mongodb:6.0.0:*:*:*:*:*:*:*
Range: 6.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jira.mongodb.org/browse/SERVER-106753mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000