Security Advisory

CVE-2025-11535

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-08 22:07:18

Last updated 2026-02-26 17:48:09

Assigner mongodb

State PUBLISHED

Description

MongoDB Connector for BI installation via MSI on Windows leaves ACLs unset on custom install directories allows Privilege Escalation.This issue affects MongoDB Connector for BI: from 2.0.0 through 2.14.24.

← Browse all CVEs View on cve.org ↗