VYPR
Medium severity6.5NVD Advisory· Published Apr 29, 2026· Updated May 6, 2026

CVE-2026-6914

CVE-2026-6914

Description

Computing the MD5 checksum of a malformed BSON object under specific conditions may cause loss of availability in MongoDB server. This issue affects all MongoDB Server v8.2 versions, all MongoDB Server v8.1 versions, MongoDB Server v8.0 versions prior to 8.0.21, MongoDB Server v7.0 versions prior to 7.0.32

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • MongoDB/MongoDB2 versions
    cpe:2.3:a:mongodb:mongodb:*:*:*:*:-:*:*:*+ 1 more
    • cpe:2.3:a:mongodb:mongodb:*:*:*:*:-:*:*:*range: >=7.0.0,<7.0.32
    • (no CPE)range: all v8.2, all v8.1, v8.0 < 8.0.21, v7.0 < 7.0.32
  • osv-coords
    Range: >= 7.0.0, < 7.0.32

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.