Is MongoDB 4.2.25 patched?
Current stable (8.3.4): 100/100
4.2.25 has 1 open critical-or-high vulnerability. Run 7.0.35 or later to clear it. See what 7.0.35 fixes →
Summary iPlain-English security status for MongoDB 4.2.25, built from its CVEs, active-exploitation data, end-of-life date and latest release.
MongoDB 4.2.25 is part of the 4.2 release line. 1 known vulnerability affects it. The minimum safe version is 7.0.35 — upgrade to it or later to clear the open critical/high issues. The 4.2 line reached end-of-life on 2023-04-30, so it no longer receives security patches. The latest supported MongoDB release is 8.3.4.
Known issues affecting 4.2.25
Exploited first, then by exploitation probability.
CVE-2026-9753 HIGH EPSS 0% → fixed in 8.3.3Other MongoDB versions
Check another release line of MongoDB.
Frequently asked
Is MongoDB 4.2.25 patched?
MongoDB 4.2.25 is end-of-life and no longer receives security patches. Move to 8.3.4.
What version should I upgrade MongoDB 4.2.25 to?
Upgrade MongoDB 4.2.25 to at least 7.0.35 to clear its 1 open critical-or-high vulnerability.
When does MongoDB 4.2 reach end-of-life?
MongoDB 4.2 reached end-of-life on 2023-04-30 and no longer receives security patches.
What is the latest version of MongoDB?
The latest supported MongoDB release is 8.3.4.
Is MongoDB 4.2.25 still receiving security updates?
No — MongoDB 4.2.25 is on the 4.2 line, which reached end-of-life on 2023-04-30 and no longer receives security updates. Upgrade to 8.3.4 or later to stay supported.
Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against MongoDB's official advisory before you patch or upgrade — MongoDB official site ↗