Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
MongoDb Improper Validation of Specified Type of Input Vulnerability - CVE-2026-9742 - Vulnerability Database
MongoDb

MongoDb Improper Validation of Specified Type of Input Vulnerability - CVE-2026-9742

Medium
Reference: CVE-2026-9742
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2026-9742
Title: MongoDb Improper Validation of Specified Type of Input Vulnerability
Overview:

When OIDC authentication is enabled in configuration clients may set specific values in the quotmechanismquot parameter of the quotauthenticatequot command that lead to server crash. The authenticate command is accessible to unauthenticated clients leading to pre-auth denial-of-service in affected product configurations.