MongoDB Server contains an improper handling of length parameter inconsistency vulnerability in Zlib compressed protocol headers. This vulnerability allows unauthenticated clients to read uninitialized heap memory, potentially exposing sensitive information. The flaw affects the protocol-level handling of compressed data and could impact various products using MongoDB components. The vulnerability is tracked as CVE-2025-14847 and has been assigned a high criticality rating due to its potential for unauthorized memory access without authentication requirements.