CNNVD-202602-1451 Information

CNNVD ID

CNNVD-202602-1451

Related CVE

CVE-2026-25610

• CNNVD Published: 2026-02-10

Description (Chinese)

MongoDB Server是美国MongoDB公司的一套开源的NoSQL数据库。该数据库提供面向集合的存储、动态查询、数据复制及自动故障转移等功能。 MongoDB Server存在安全漏洞，该漏洞源于授权用户运行包含特定无效索引提示的$geoNear管道，可能导致服务器崩溃。

Description (English)

MongoDB Server is an open-source NoSQL database for MongoDB in the United States. The database provides a collection-oriented memory, dynamic queries, data replication and automatic downtime transfer. There is a security loophole in MongoDB Server, which results from authorized users running the $geoNear conduit with specified invalid index tips, which could lead to server collapse.

Vulnerability Type

其他

Affected Vendor

MongoDB

Published

2026-02-10

Last Modified

2026-02-24

References

https://jira.mongodb.org/browse/SERVER-99119 https://access.redhat.com/security/cve/cve-2026-25610

Patch

https://jira.mongodb.org/browse/SERVER-99119