Business Community > Controllers > Mongobleed
< Controllers

Mongobleed

Mongobleed

Mongobleed
Mongobleed
2026-01-04 06:37:16 - last edited 2026-02-03 09:01:17
Tags: #Controller

Dear Team,

Does the security issue reported for Mongo CVE-2025-14847 also apply for the software-based Omada controller?
One recommendation offered to remedy - in case no immediate update to a patched version is possible - was to close down port 27217 which is however necessary for the Omada controller to run.

Or not relevant as also not mentioned in the port forwarding section in the configuration document  https://support.omadanetworks.com/uy/document/13090/ ?

Thanks!

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:Mongobleed-Solution
2026-01-04 07:45:18 - last edited 2026-02-03 09:01:17

  @Eg64 

 

If you are running omada on an ubuntu server you can upgrade mongodb, it is not possible with the windows installation since mongodb is built into the omada package, there are two versions either 3.6.23 and 7.0.14, both of which are covered by the threat.

 

 

 

Recommended Solution
  0  
  0  
#2
Options
5 Reply
Re:Mongobleed-Solution
2026-01-04 07:45:18 - last edited 2026-02-03 09:01:17

  @Eg64 

 

If you are running omada on an ubuntu server you can upgrade mongodb, it is not possible with the windows installation since mongodb is built into the omada package, there are two versions either 3.6.23 and 7.0.14, both of which are covered by the threat.

 

 

 

Recommended Solution
  0  
  0  
#2
Options
Re:Mongobleed
2026-01-04 10:31:58

  @MR.S Thx. 
Have seen the recommendation to hotfix. Windows seems to be a problem then.

  0  
  0  
#3
Options
Re:Mongobleed
2026-02-02 06:56:50 - last edited 2026-02-03 09:01:14

Hi  @Eg64 

 

Thanks for the feedback.

You may have a look at the following:

 

Security Advisory on Omada Controller Exposure to MongoBleed (CVE-2025-14847)

 

Wish you a happy life and smooth network usage!  >Omada US Enterprise Beta Program Launch< >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<
  0  
  0  
#4
Options
Re:Mongobleed
2026-02-03 09:00:56

  @Vincent-TP

Thanks for the update!

Have also found a hint in the release notes for the 6.2.9.19 version of the controller.

Br's 

 

  1  
  1  
#5
Options
Re:Mongobleed
3 weeks ago

Hi  @Eg64 

 

Where did you see the 6.2.9.19 version? Is it a typo?

Wish you a happy life and smooth network usage!  >Omada US Enterprise Beta Program Launch< >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<
  0  
  0  
#6
Options

Information

Helpful: 0

Views: 517

Replies: 5

Tags

Controller
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.