CVE-2019-10758—MongoDB mongo-express Remote Code Execution Vulnerability
PUBLISHEDvulnerability record
2021-12-10 · last modified June 21, 2025
Metadata
漏洞名称
MongoDB mongo-express Remote Code Execution Vulnerability
描述
mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the `toBSON` method.
已知用于勒索软件活动吗?
采集行动
Apply updates per vendor instructions.