anonhaven
Ad

CVE-2026-4148

HIGH CVSS 4.0: 8.7 EPSS 0.05%
Updated Apr 10, 2026
MongoDB
Parameter Value
CVSS 8.7 (HIGH)
Affected Versions 7.0.0 — 8.2.6
Fixed In 7.0.31
Type CWE-416 (Use After Free)
Vendor MongoDB
Public PoC No

A use-after-free vulnerability can be triggered in sharded clusters by an authenticated user with the read role who issues a specially crafted $lookup or $graphLookup aggregation pipeline.

Attack Parameters

Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Attack Requirements
None
No additional conditions
Privileges Required
Low
Basic privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
High
Complete data leak
Integrity
High
Complete data modification
Availability
High
Complete denial of service

CVSS Vector v4.0

Weakness Type (CWE)

CWE-416 Use After Free

Vulnerable Products 8

Configuration From (including) Up to (excluding)
Mongodb Mongodb
cpe:2.3:a:mongodb:mongodb:*:*:*:*:-:*:*:*
 7.0.0 7.0.31
Mongodb Mongodb
cpe:2.3:a:mongodb:mongodb:*:*:*:*:-:*:*:*
 8.0.0 8.0.20
Mongodb Mongodb
cpe:2.3:a:mongodb:mongodb:*:*:*:*:-:*:*:*
 8.2.0 8.2.6
Mongodb Mongodb
cpe:2.3:a:mongodb:mongodb:8.3.0:alpha0:*:*:-:*:*:*
Mongodb Mongodb
cpe:2.3:a:mongodb:mongodb:8.3.0:alpha1:*:*:-:*:*:*
Mongodb Mongodb
cpe:2.3:a:mongodb:mongodb:8.3.0:alpha2:*:*:-:*:*:*
Mongodb Mongodb
cpe:2.3:a:mongodb:mongodb:8.3.0:alpha3:*:*:-:*:*:*
Mongodb Mongodb
cpe:2.3:a:mongodb:mongodb:8.3.0:rc1:*:*:-:*:*:*

References 1

https://jira.mongodb.org/browse/SERVER-119319
cna@mongodb.com
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-5170

MongoDB

6.0

CVE-2026-4359

MongoDB

2.0

CVE-2026-4358

MongoDB

6.1

CVE-2026-4147

MongoDB

7.1

CVE-2025-14847

MongoDB

7.5