CNNVD-202601-4492 Information
Jan 27, 2026
cve
CNNVD ID
CNNVD-202601-4492
Related CVE
- CNNVD Published: 2026-01-27
Description (Chinese)
MongoDB是美国MongoDB公司的一种面向文档的数据库管理系统。 MongoDB存在安全漏洞,该漏洞源于对chunkSize元数据缺少适当验证,可能导致特制的GridFS元数据溢出边界容器。
Description (English)
MongoDB is a file-oriented database management system of the United States company MongoDB. There is a security gap in MongoDB, which stems from the lack of proper validation of the chunkSize metadata, which could result in the spilling of specially designed GridFS metadata over border containers.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
MongoDB
Published
2026-01-27
Last Modified
2026-02-24
References
https://jira.mongodb.org/browse/CDRIVER-6125
Patch
https://jira.mongodb.org/browse/CDRIVER-6125
Share on: