How severe is CVE-2026-0529?

CVE-2026-0529 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2026-0529

6.5MEDIUM

Improper Validation of Array Index (CWE-129) in Packetbeat’s MongoDB protocol parser can allow an attacker to cause Overflow Buffers (CAPEC-100) through specially crafted network traffic. This require

Published: 1/14/2026Updated: 1/14/2026

Description

Improper Validation of Array Index (CWE-129) in Packetbeat’s MongoDB protocol parser can allow an attacker to cause Overflow Buffers (CAPEC-100) through specially crafted network traffic. This requires an attacker to send a malformed payload to a monitored network interface where MongoDB protocol parsing is enabled.

AI AnalysisPowered by AI

References

https://discuss.elastic.co/t/packetbeat-8-19-10-9-1-10-9-2-4-security-update-esa-2026-02/384520