CVE-2025-1755

Publication date

2025-02-27 15:24:07

Family

mongodb

State

PUBLISHED

Description

MongoDB Compass may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a users system with elevated privileges, when a crafted file is stored in C:node_modules. This issue affects MongoDB Compass prior to 1.42.1