CVE-2026-4358

MEDIUM

Memory safety issues in slot-based execution hash table spill

Title source: cna

Description

A specially crafted aggregation query with $lookup by an authenticated user with write privileges can cause a double-free or use-after-free memory issue in the slot-based execution (SBE) engine when an in-memory hash table is spilled to disk.

References (1)

https://jira.mongodb.org/browse/SERVER-118849

Scores

CVSS v3 6.4

EPSS 0.0003

EPSS Percentile 8.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-415

Status published

Products (4)

mongodb/mongodb 7.0.0 - 7.0.31

MongoDB Inc/MongoDB Server 7.0 - 7.0.31

MongoDB Inc/MongoDB Server 8.0 - 8.0.20

MongoDB Inc/MongoDB Server 8.2 - 8.2.6

Published Mar 17, 2026

Tracked Since Mar 18, 2026