The ldapQueryPassword parameter, when set through the runtime setParameter command, will log the new password to the mongod.log file in plain text.
{ "severity": "Medium", "cpes": [ "cpe:2.3:a:mongodb:mongodb:*:*:*:*:*:*:*:*" ] }
"https://github.com/bitnami/vulndb/tree/main/data/mongodb/BIT-mongodb-2026-9751.json"