Critical sandbox escape flaw discovered in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
GitHub

fmorriso/Python-MongoDB-Pydantic-Example

Following information is expected to be available and accurate in a file named .env with values different than the ones shown: MONGODB_CONNECTION_TEMPLATE='fmorrison ...
InfoQ

Two Missing Characters: How a Regex Flaw Exposed AWS GitHub Repos to Supply-Chain Risk

AWS recently published a security bulletin acknowledging a configuration issue affecting some popular AWS-managed open-source ...

MongoDB Sets a New Standard for Retrieval Accuracy with Voyage 4 Models for Production-Ready AI Applications

MongoDB, Inc. (NASDAQ: MDB) today announced an industry-first expansion of its AI capabilities at MongoDB.local San Francisco, bringing together its core database with Voyage AI's world-class ...
GitHub

MongoDB CLI

The MongoDB CLI is a modern command line interface that enables you to manage your MongoDB services from the terminal. Use simple, one-line commands to interact with Ops Manager or Cloud Manager, and ...
Bleeping Computer

CISA orders feds to patch MongoBleed flaw exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to secure their systems against a high-severity MongoDB flaw that is actively being exploited in attacks.
cybernews

As MongoBleed exploitation escalates, 95% of systems remain unpatched

Hackers are actively exploiting the MongoBleed vulnerability, dumping server memory and scouring for passwords, tokens, credentials, and other sensitive data, cyber authorities warn. Estimates suggest ...