CVE-2025-6711: MongoDB Server Logs Expose Unredacted Queries

A concerning vulnerability, CVE-2025-6711, has been identified in MongoDB Server. Under specific error conditions, unredacted queries might be inadvertently written to server logs, potentially exposing sensitive information. This poses a significant risk to data privacy and security.

Vulnerability Details

CVE ID: CVE-2025-6711
Description: MongoDB Server may log unredacted queries when certain errors occur. This affects MongoDB Server v8.0 versions prior to 8.0.5, v7.0 versions prior to 7.0.18, and v6.0 versions prior to 6.0.21.
CVSS Score: 4.4 (Medium)
CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
CVSS Explanation: This vulnerability has a medium severity score. It requires network access (AV:N) but has high complexity (AC:H) and requires high privileges (PR:H) on the MongoDB server. Although there's no user interaction required (UI:N) and the scope is unchanged (S:U), the confidentiality impact is high (C:H), meaning sensitive data can be exposed. There's no impact on integrity (I:N) or availability (A:N). Essentially, if an attacker gains high-level access, they *might* be able to see sensitive queries logged during specific errors.
Exploit Requirements: Successful exploitation requires an attacker to have high privileges within the MongoDB environment and trigger specific error conditions.

Affected Products:

Vendor: MongoDB
Product: MongoDB Server
Versions:
- v8.0 versions prior to 8.0.5
- v7.0 versions prior to 7.0.18
- v6.0 versions prior to 6.0.21

CWE: CWE-532 (Information Exposure Through Log Files)
CWE Explanation: CWE-532 refers to situations where sensitive information is unintentionally exposed through log files. In this case, query data, which could contain passwords, API keys, or other confidential information, is being logged without proper redaction.

Timeline of Events

2025-07-07: Vulnerability publicly disclosed.

Exploitability & Real-World Risk

While exploitation requires high privileges and specific error conditions, the potential impact is significant. Exposed queries can reveal sensitive database structures, user credentials, and proprietary business logic. In a real-world scenario, a malicious insider or an attacker who has already compromised a high-privilege account could leverage this vulnerability to gather sensitive information. The risk is amplified in environments handling personally identifiable information (PII) or financial data, potentially leading to regulatory compliance issues and reputational damage.

Recommendations

The primary recommendation is to upgrade your MongoDB Server to the latest patched versions:

Upgrade to MongoDB Server 8.0.5 or later.
Upgrade to MongoDB Server 7.0.18 or later.
Upgrade to MongoDB Server 6.0.21 or later.

Additionally, review your MongoDB logging configuration and ensure proper redaction is in place to minimize the exposure of sensitive data in server logs. Consider implementing stricter access controls to limit the number of users with high privileges.

Technical Insight

The vulnerability stems from a failure to properly sanitize and redact query data before it's written to the server logs. When certain error conditions arise during query processing, the logging mechanism might bypass the redaction process, leading to the exposure of the original, unredacted query string. This can include sensitive parameters, filter criteria, and potentially even embedded credentials.

Credit to Researcher(s)

MongoDB Security Team

References

MongoDB Jira Issue SERVER-98720

CVE-2025-6711: MongoDB Server Logs Expose Unredacted Queries

CVE-2025-6711: MongoDB Server Logs Expose Unredacted Queries

Vulnerability Details

Affected Products:

Timeline of Events

Exploitability & Real-World Risk

Recommendations

Technical Insight

Credit to Researcher(s)

References

Tags

Timeline

References

Post a Comment

Contact Form