CVE-2025-27413: Mongoose Uninitialized Cleanup Race
A database collection is forcefully cleared using raw schema operations (e.g., in a test or reset utility) without a corresponding synchronous re-initialization of required default configuration structures. This may lead to application panics, race conditions, or unvalidated schema states.
Provally CuratedPublic repositoryLowMedium confidenceVerifiedApache-2.0
JS
JSgreprules fetch cve-2025-27413-mongoose-uninitialized-cleanup-race --engine opengrepDescription
A database collection is forcefully cleared using raw schema operations (e.g., in a test or reset utility) without a corresponding synchronous re-initialization of required default configuration structures. This may lead to application panics, race conditions, or unvalidated schema states.
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0