CNNVD-202602-1449 Information

CNNVD ID

CNNVD-202602-1449

Related CVE

CVE-2026-2302

• CNNVD Published: 2026-02-10

Description (Chinese)

MongoDB Ruby Driver是MongoDB开源的一个Ruby库。 MongoDB Ruby Driver存在安全漏洞，该漏洞源于处理特制的Hash r类型值时，可能允许执行任意Ruby代码。

Description (English)

MongoDB Ruby Driver is a Ruby library of the MongoDB open source. There is a security loophole in MongoDB Ruby Driver, which stems from the possibility of allowing the enforcement of any Ruby code when dealing with unique Hash r-type values.

Vulnerability Type

其他

Affected Vendor

MongoDB

Published

2026-02-10

Last Modified

2026-02-24

References

https://jira.mongodb.org/browse/MONGOID-5919 https://access.redhat.com/security/cve/cve-2026-2302

Patch

https://jira.mongodb.org/browse/MONGOID-5919