CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-9750

An authenticated user can cause a MongoDB server to crash or return incorrect results by creating documents that interfere with internal metadata processing during query execution. This stems from insufficient separation between user-controlled document fields and internal metadata in certain execution paths.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.1%

CVSS Severity

CVSS v3 Score 6.5

References

https://jira.mongodb.org/browse/SERVER-123633

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-9750

Products

Pricing

Contact Us