HarborGuardharborguardDatabase
Back to search
HIGHCVE-2026-9741Published Modified CNA mongodb

CVE-2026-9741: Client side encryption fails to encrypt values in a $vectorSearch

A bug in query analysis processing of the $vectorSearch aggregation stage for Queryable Encryption (QE) or Client-Side Field Level Encryption (CSFLE) results in literal values for encrypted fields within the $vectorSearch stage filter expressions to be sent to the server as plaintext instead of ciphertext.

Metrics

CVSS v4.0
7.1
Severity
HIGH
Fixed in
7.0.35
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

This is an encryption bypass bug in MongoDB Server affecting the $vectorSearch aggregation stage when Queryable Encryption (QE) or Client-Side Field Level Encryption (CSFLE) is configured. An authenticated attacker with a low-privilege account can send queries that cause literal values in $vectorSearch filter expressions to reach the server as plaintext instead of being encrypted, bypassing the confidentiality guarantees those features are designed to provide. Successful exploitation exposes sensitive field values that were intended to remain encrypted in transit to the server. Patched-image rebuilds at versions 7.0.35, 8.0.24, 8.2.10, and 8.3.3 are available on HarborGuard for affected environments.

HarborGuard Coverage

Detection

Detection of CVE-2026-9741 is available across every HarborGuard environment. The CVE is ingested from upstream feeds within minutes of publication and matched against customer images in registries and CI/CD pipelines, including custom-built MongoDB images.

Available
Triage

Triage is available using the CVSS v4.0 score of 7.1 (HIGH), weighted against each customer environment's compliance policy to determine priority and routing. Findings are surfaced to the appropriate team inbox within each customer org based on configured ownership rules.

Available
Patch

Patched-image rebuilds at MongoDB versions 7.0.35, 8.0.24, 8.2.10, and 8.3.3 are available for any environment running an affected version. For customers who opt into auto-remediation, HarborGuard performs the rebuild, runs a regression test suite, and opens a PR against affected workloads.

Available

Exploit Conditions

  • Network reachabilityRequired

    The attacker must be able to reach the MongoDB service over the network to submit queries against it.

  • AuthenticationRequired

    A low-privilege account is sufficient; the attacker must be authenticated to the MongoDB instance to issue $vectorSearch aggregation queries.

  • Victim interactionNot required

    No user interaction is needed; the attacker submits a malformed query directly and the server processes it without any other party taking action.

  • Attack complexityDetail

    Exploit conditions are straightforward and reliable with no race conditions or special environmental configuration required.

Blast Radius

  • The attacker reads plaintext values of fields that were meant to be protected by Queryable Encryption or Client-Side Field Level Encryption, including any sensitive data stored in those fields such as personal identifiers, credentials, or application-specific secrets.
  • Confidentiality of encrypted field values in $vectorSearch filter expressions is fully compromised for any query the attacker can submit.
  • No data integrity or availability impact is present; the database contents are not modified and the service remains operational.

How HarborGuard Handles This

Available on HarborGuard: detection for this CVE is active against all scanned images the moment the advisory is ingested, including any custom MongoDB images built internally. For environments running affected MongoDB versions (7.0.0 through 8.3.2 depending on release line), a patched-image rebuild targeting the appropriate fix version (7.0.35, 8.0.24, 8.2.10, or 8.3.3) is available. For customers who opt into auto-remediation, HarborGuard triggers a rebuild, executes a regression run against the new image, and opens a PR against affected workloads; median time from CVE publication to merged patch PR for high-severity issues is around 90 minutes for environments with auto-remediation enabled. Where compliance policy does not permit auto-remediation, the finding is routed to the appropriate team inbox with remediation guidance. As a compensating control prior to patching, operators should consider restricting network access to MongoDB instances to known trusted clients and auditing which applications use $vectorSearch with QE or CSFLE-protected fields to assess exposure scope.

See how HarborGuard automates this

Fix available

7.0.358.0.248.2.108.3.3
Affected packages
  • MongoDB / MongoDB Server
    < 8.3.3 (from 8.3.0) · < 8.2.10 (from 8.2.0) · < 8.0.24 (from 8.0.0) · < 7.0.35 (from 7.0.0)
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
References