← Back to CVEs
CVE-2026-1848
HIGH7.5
Description
Connections received from the proxy port may not count towards total accepted connections, resulting in server crashes if the total number of connections exceeds available resources. This only applies to connections accepted from the proxy port, pending the proxy protocol header.
CVE Details
CVSS v3.1 Score7.5
SeverityHIGH
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published2/10/2026
Last Modified2/25/2026
Sourcenvd
Honeypot Sightings0
Affected Products
mongodb:mongodb
Weaknesses (CWE)
CWE-770
References
https://jira.mongodb.org/browse/SERVER-114695(cna@mongodb.com)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.