Lucene search
PRIOn knowledge basePRION:CVE-2019-10758HistoryDec 24, 2019 - 10:15 p.m.
Remote code execution
2019-12-2422:15:00
PRIOn knowledge base
www.prio-n.com
6
mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the toBSON method. A misuse of the vm dependency to perform exec commands in a non-safe environment.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mongo-express | lt | 0.54.0 |
References
Related
githubexploit
githubexploit
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2020-01-05 14:05:56
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2020-12-01 09:18:57
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2019-12-26 06:58:56
osv
osv
Remote Code Execution Vulnerability in NPM mongo-express
2019-12-30 19:30:31
CVE-2019-10758
2019-12-24 22:15:11
cve
cve
CVE-2019-10758
2019-12-24 22:15:11
attackerkb
attackerkb
CVE-2019-10758
2019-07-15 00:00:00
checkpoint_advisories
checkpoint_advisories
MongoDB mongo-express Remote Code Execution (CVE-2019-10758)
2020-01-02 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-12-26 01:32:21
cisa_kev
cisa_kev
MongoDB mongo-express Remote Code Execution Vulnerability
2021-12-10 00:00:00
nessus
nessus
Mongo-Express < 0.54.0 RCE
2024-05-02 00:00:00
Mongo-Express < 0.54.0 RCE (CVE-2019-10758)
2024-06-14 00:00:00
cvelist
cvelist
CVE-2019-10758
2019-12-24 21:08:36
nvd
nvd
CVE-2019-10758
2019-12-24 22:15:11
github
github
Remote Code Execution Vulnerability in NPM mongo-express
2019-12-30 19:30:31
nuclei
nuclei
mongo-express Remote Code Execution
2022-02-10 21:31:25
cisa
cisa
CISA Adds Thirteen Known Exploited Vulnerabilities to Catalog
2021-12-10 00:00:00
CISA Adds 13 Known Exploited Vulnerabilities to Catalog
2021-12-10 00:00:00
qualysblog
qualysblog
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00