What is CVE-2026-25612?

CVE-2026-25612 is a medium-severity vulnerability in Mongodb Inc Server, classified under CWE-412. CVSS score: 6.5/10. Published 2026-02-10.

How severe is CVE-2026-25612?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Mongodb Inc Server

CVE-2026-25612

The internal locking mechanism of the MongoDB server uses an internal encoding of the resources in order to choose what lock to take. Collections may inadvertently collide with one another in this representation causing unavailability betw…

EPSS: 0.000 (14.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

Affected products

Mongodb Inc Server — versions 8.2, 8.0, 7.0

Weakness classification (CWE)

CWE-412

References

jira.mongodb.org/browse/SERVER-114838
jira.mongodb.org/browse/SERVER-115296

Frequently asked questions

What is CVE-2026-25612?: CVE-2026-25612 is a medium-severity vulnerability in Mongodb Inc Server, classified under CWE-412. CVSS score: 6.5/10. Published 2026-02-10.
How severe is CVE-2026-25612?: Medium severity. CVSS v3 base score is 6.5 out of 10.