Cato CTRL senior security researcher Vitaly Simonovich discovered CVE-2026-25611, a high-severity flaw rated 7.5 that lets unauthenticated attackers crash MongoDB servers using crafted messages. This issue affects versions from 3.4 and later with compression enabled by default since 3.6, including MongoDB Atlas setups.nvd. Vulnerability Details The flaw stems from MongoDB’s handling of OP_COMPRESSED messages in […] The post New MongoDB Vulnerability Allows Attackers to Crash Any Server appeared first on Cyber Security News.