CVE-2026-6915

· NIST NVD ↗

An authorization flaw in the user management command could allow an authenticated user to make limited changes to authentication-related data associated with another user account. This could affect how authentication is performed for the impacted account.

MEDIUM
CVSS severity
6.3
CVSS base score
2026-04-29
Published

CWE codes

CWE-1284

Affected products

mongodb:mongodb

Sources