CVE-2026-9753

The $ internalApplyOplogUpdate aggregation pipeline stage can be used to execute a document diff containing a malformed binary diff to return memory out-of-bounds or crash the server. $ internalApplyOplogUpdate can be executed by any authenticated user with access to the aggregate command.