CVE-2026-4148 | MongoDB Server up to 7.0.30/8.0.19/8.2.5 lookup/graphlookup use after free

Inserito da Angelo Barbosa | Mar 17, 2026 | CVE

A vulnerability was found in MongoDB Server up to 7.0.30/8.0.19/8.2.5. It has been classified as critical. This issue affects some unknown processing. The manipulation of the argument lookup/graphlookup leads to use after free.

This vulnerability is uniquely identified as CVE-2026-4148. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is recommended.

CVE-2026-4148 | MongoDB Server up to 7.0.30/8.0.19/8.2.5 lookup/graphlookup use after free

Post correlati

CVE-2025-0567 | Epic Games Launcher up to 17.2.1 Installer profapi.dll untrusted search path

CVE-2023-50309 | IBM Sterling B2B Integrator Standard Edition up to 6.1.2.5/6.2.0.0 Web UI cross site scripting

CVE-2025-11662 | SourceCodester Best Salon Management System 1.0 /booking.php serv_id sql injection

CVE-2024-21670 | hyperledger-archives ursa up to 0.3.7 Revocation Schema risky encryption (GHSA-r78f-4q2q-hvv4)