CVE-2026-4358

Summary

A specially crafted aggregation query with $lookup by an authenticated user with write privileges can cause a double-free or use-after-free memory issue in the slot-based execution (SBE) engine when an in-memory hash table is spilled to disk.

Affected Software

VendorProductVersion RangeStatus
MongoDB IncMongoDB Server8.2 < 8.2.6affected
MongoDB IncMongoDB Server8.0 < 8.0.20affected
MongoDB IncMongoDB Server7.0 < 7.0.31affected

Weaknesses

  • CWE-415: CWE-415 Double free

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References