A user with access to the cluster with a limited set of privilege actions may be able to terminate queries that are being executed by other users. This may cause a denial of service by preventing a fraction of queries from successfully completing. This issue affects MongoDB Server v7.0 versions prior to 7.0.26 and MongoDB Server v8.0 versions prior to 8.0.14
{
"unresolved_ranges": [
{
"source": "AFFECTED_FIELD",
"extracted_events": [
{
"introduced": "8.0"
},
{
"fixed": "8.0.14"
},
{
"introduced": "7.0"
},
{
"fixed": "7.0.26"
}
]
}
],
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/13xxx/CVE-2025-13643.json",
"cna_assigner": "mongodb",
"cwe_ids": [
"CWE-862"
]
}{
"source": [
"CPE_RANGE",
"CPE_STRING"
],
"cpe": [
"cpe:2.3:a:mongodb:mongodb:*:*:*:*:-:*:*:*",
"cpe:2.3:a:mongodb:mongodb:8.2.0:alpha:*:*:-:*:*:*",
"cpe:2.3:a:mongodb:mongodb:8.2.0:alpha0:*:*:-:*:*:*",
"cpe:2.3:a:mongodb:mongodb:8.2.0:alpha1:*:*:-:*:*:*",
"cpe:2.3:a:mongodb:mongodb:8.2.0:alpha2:*:*:-:*:*:*"
],
"extracted_events": [
{
"introduced": "7.0.0"
},
{
"fixed": "7.0.26"
},
{
"introduced": "8.0.0"
},
{
"fixed": "8.0.14"
},
{
"introduced": "8.2.0-alpha"
},
{
"last_affected": "8.2.0-alpha"
},
{
"introduced": "8.2.0-alpha0"
},
{
"last_affected": "8.2.0-alpha0"
},
{
"introduced": "8.2.0-alpha1"
},
{
"last_affected": "8.2.0-alpha1"
},
{
"introduced": "8.2.0-alpha2"
},
{
"last_affected": "8.2.0-alpha2"
}
]
}