CVE-2026-8201 | MongoDB Server up to 7.0.33/8.0.22/8.2.8/8.3.1 mongocryptd/crypt_shared use after free

May 13, 2026 Yanac

A vulnerability was found in MongoDB Server up to 7.0.33/8.0.22/8.2.8/8.3.1. It has been declared as critical. This impacts an unknown function of the component mongocryptd/crypt_shared. Executing a manipulation can lead to use after free.

This vulnerability is registered as CVE-2026-8201. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More