cvedb.io
CVE-2026-1848
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2026-02-10T19:15:51.333 · Last modified 2026-06-17T10:16:36.587

Summary

Connections received from the proxy port may not count towards total accepted connections, resulting in server crashes if the total number of connections exceeds available resources. This only applies to connections accepted from the proxy port, pending the proxy protocol header.

Affected products

mongodb — mongodb

Does this affect you?

Add your gear to cvedb and we'll alert you only when mongodb ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.