CVE-2026-2302 | MongoDB Ruby Driver up to 7.6.1/8.0.12/8.1.12/9.0.10 Mongoid::Criteria privilege escalation

Inserito da Angelo Barbosa | Feb 10, 2026 | CVE

A vulnerability classified as critical was found in MongoDB Ruby Driver up to 7.6.1/8.0.12/8.1.12/9.0.10. Affected is the function Mongoid::Criteria. The manipulation results in privilege escalation.

This vulnerability is identified as CVE-2026-2302. The attack can be executed remotely. There is not any exploit available.

CVE-2026-2302 | MongoDB Ruby Driver up to 7.6.1/8.0.12/8.1.12/9.0.10 Mongoid::Criteria privilege escalation

Post correlati

CVE-2025-8371 | code-projects Exam Form Submission 1.0 /admin/update_s5.php credits sql injection

CVE-2024-57959 | Huawei HarmonyOS/EMUI Display Module use after free

CVE-2025-52889 | lxc incus 6.12/6.13 allocation of resources

CVE-2023-7071 | Essential Blocks Plugin up to 4.4.6 on WordPress cross site scripting