mongodb inc.

Top products

The 15 most recently published vulnerabilities affecting mongodb inc..

• CVE-2026-9101Prototype pollution in csv parsing4.3May 20, 2026
• CVE-2026-9100Heap memory out of bounds read and crash in C Driver legacy GridFS file reader5.9May 20, 2026
• CVE-2026-8843Calling createIndex with certain index types can crash mongod6.5May 18, 2026
• CVE-2026-6811PHP Stack Exhaustion5.9May 14, 2026
• CVE-2026-8202Post-authentication CPU utilization DoS via $trim/$ltrim/$rtrim operators4.3May 13, 2026
• CVE-2026-8336Post-authentication use-after-free error in $_internalJsEmit and mapreduce commands7.5May 13, 2026
• CVE-2026-8201Use-After-Free in MongoDB FLE Query Analysis When Processing Positional Projections on Encrypted Fields6.4May 13, 2026
• CVE-2026-8200Schema validation log messages may not redact user data2.7May 13, 2026
• CVE-2026-8199Post-auth memory exhaustion via bitwise match expressions6.5May 13, 2026
• CVE-2026-8053FlatBSON Duplicate Field Index Drift8.8May 12, 2026
• CVE-2026-8431Ops Manager RCE via webhook body7.2May 12, 2026
• CVE-2026-8063Post-auth null pointer dereference when aggregating against a view with empty search pipeline6.5May 7, 2026
• CVE-2026-6691MongoDB C Driver Cyrus SASL Canonicalization Buffer Overflow7.8May 6, 2026
• CVE-2026-6231bson_validate may skip validation when processing certain inputs4.3Apr 13, 2026
• CVE-2026-5170Users could trigger a crash of mongod primaries during promotion to sharded5.3Mar 30, 2026