CVE-2026-9100 | MongoDB C Driver up to 1.30.7/2.2.3 Legacy GridFS API improper validation of specified index, position, or offset in input

May 20, 2026 Yanac

A vulnerability identified as problematic has been detected in MongoDB C Driver up to 1.30.7/2.2.3. This affects an unknown part of the component Legacy GridFS API. Performing a manipulation results in improper validation of specified index, position, or offset in input.

This vulnerability is known as CVE-2026-9100. Remote exploitation of the attack is possible. No exploit is available.

You should upgrade the affected component.VulDB Recent EntriesRead More