216.73.217.50

CVE-2026-6914

· Published 29/04/2026 17:16 · Modified 29/04/2026 17:16

Labels: CVE-2026-6914 2026-04-29CVE-2026-6914CWE-191[email protected]

Essential information

Published
29/04/2026 17:16
Modified
29/04/2026 17:16
Author
Creator
CVSS
7.1 HIGH (v3) 7.1 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Computing the MD5 checksum of a malformed BSON object under specific conditions may cause loss of availability in MongoDB server. This issue affects all MongoDB Server v8.2 versions, all MongoDB Server v8.1 versions, MongoDB Server v8.0 versions prior to 8.0.21, MongoDB Server v7.0 versions prior to 7.0.32

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
mongodb / mongodb server cpe:2.3:a:mongodb:mongodb_server:8.2:*:*:*:*:*:*:*
mongodb / mongodb server cpe:2.3:a:mongodb:mongodb_server:8.1:*:*:*:*:*:*:*
mongodb / mongodb server cpe:2.3:a:mongodb:mongodb_server:<8.0.21:*:*:*:*:*:*:*
mongodb / mongodb server cpe:2.3:a:mongodb:mongodb_server:<7.0.32:*:*:*:*:*:*:*

References