TROYANOSYVIRUS
Voltar para CVEs

CVE-2026-25609

MEDIUM
5.4

Descricao

Incorrect validation of the profile command may result in the determination that a request altering the 'filter' is read-only.

Detalhes CVE

Pontuacao CVSS v3.15.4
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosLOW
Interacao do usuarioNONE
Publicado2/10/2026
Ultima modificacao2/25/2026
Fontenvd
Avistamentos honeypot0

Produtos afetados

mongodb:mongodb

Fraquezas (CWE)

CWE-862

Referencias

https://jira.mongodb.org/browse/SERVER-112952(cna@mongodb.com)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.