Overview
CVE-2025-14847 is a security vulnerability affecting certain versions of MongoDB used by SmartDeploy. To remediate this issue, SmartDeploy customers must upgrade MongoDB to a supported, patched release.
Resolution
We recommend updating MongoDB to version 8.0.17, which addresses CVE-2025-14847 and is the latest version validated for use with SmartDeploy at this time.
Download MongoDB 8.0.17
Use the following direct download link for Windows (x86_64):
https://fastdl.mongodb.org/windows/mongodb-windows-x86_64-8.0.17-signed.msi
Installation Steps
Close the SmartDeploy application on the console host system.
Open Apps & Features (or Programs and Features) in Windows.
Uninstall the currently installed version of MongoDB.
Install MongoDB version 8.0.17 using the installer linked above.
Restart the SmartDeploy console host system.
Launch SmartDeploy and log in to confirm normal operation.
Important Notes
MongoDB versions newer than 8.0.17 have not been fully tested with SmartDeploy at the time of this writing.
Do not upgrade past version 8.0.17.Installing unsupported MongoDB versions may result in application instability or data issues.
Additional Information
For more details about this vulnerability, refer to the following resources:
MongoDB JIRA:
https://jira.mongodb.org/browse/SERVER-115508NVD CVE Record:
https://nvd.nist.gov/vuln/detail/CVE-2025-14847
