Home

Description

Connections received from the proxy port may not count towards total accepted connections, resulting in server crashes if the total number of connections exceeds available resources. This only applies to connections accepted from the proxy port, pending the proxy protocol header.

PUBLISHED Reserved 2026-02-03 | Published 2026-02-10 | Updated 2026-02-11 | Assigner mongodb




HIGH: 8.2CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Problem types

CWE-770 Allocation of Resources Without Limits or Throttling

Product status

Default status
unaffected

8.2 (semver) before 8.2.4
affected

8.0 (semver) before 8.0.18
affected

7.0 (semver) before 7.0.29
affected

References

jira.mongodb.org/browse/SERVER-114695

cve.org (CVE-2026-1848)

nvd.nist.gov (CVE-2026-1848)

Download JSON