CVE-2026-8199 | MongoDB Server up to 7.0.33/8.0.22/8.2.8/8.3.1 AST bitsAllSet/bitsAnySet/bitsAllClear/bitsAnyClear improperly controlled sequential memory allocation

SecurityVulns
Yanac

A vulnerability was found in MongoDB Server up to 7.0.33/8.0.22/8.2.8/8.3.1. It has been classified as problematic. This affects an unknown function of the component AST Handler. Performing a manipulation of the argument bitsAllSet/bitsAnySet/bitsAllClear/bitsAnyClear results in improperly controlled sequential memory allocation.

This vulnerability is cataloged as CVE-2026-8199. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More