← Volver a CVEs
CVE-2026-1849
MEDIUM6.5
Descripcion
MongoDB Server may experience an out-of-memory failure while evaluating expressions that produce deeply nested documents. The issue arises in recursive functions because the server does not periodically check the depth of the expression.
Detalles CVE
Puntuacion CVSS v3.16.5
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado2/10/2026
Ultima modificacion2/25/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
mongodb:mongodb
Debilidades (CWE)
CWE-674
Referencias
https://jira.mongodb.org/browse/SERVER-102364(cna@mongodb.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.