CVE-2026-1850

Summary

Complex queries can cause excessive memory usage in MongoDB Query Planner resulting in an Out-Of-Memory Crash.

Affected Software

VendorProductVersion RangeStatus
MongoDB IncMongoDB Server8.0 < 8.0.18affected
MongoDB IncMongoDB Server8.2 < 8.2.4affected

Weaknesses

  • CWE-770: CWE-770 Allocation of Resources Without Limits or Throttling

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References