MongoDB Mongosh
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in MongoDB Mongosh.
By the Year
In 2026 there have been 0 vulnerabilities in MongoDB Mongosh. Last year, in 2025 Mongosh had 1 security vulnerability published. Right now, Mongosh is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 7.80 |
It may take a day or so for new Mongosh vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent MongoDB Mongosh Security Vulnerabilities
mongosh <2.3.0: LPE via crafted file in C:\node_modules
CVE-2025-1756
7.8 - High
- February 27, 2025
mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a user's system with elevated privilege, when a crafted file is stored in C:\node_modules\. This issue affects mongosh prior to 2.3.0
Untrusted Path
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for MongoDB Mongosh or by MongoDB? Click the Watch button to subscribe.
