← back
CVE-2026-6811

PHP Stack Exhaustion

CVSS 6 MEDIUMEPSS 0.3%CWE-674
Stack exhaustion vulnerability in the MongoDB PHP driver can cause application crashes when processing deeply nested BSON documents in unusual circumstances when the source of these BSON documents is not MongoDB Server.
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected products
MongoDB Inc. · PHP Driver

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jira.mongodb.org/browse/PHPC-2636