Lucene search
Veracode Vulnerability DatabaseVERACODE:22229HistoryDec 26, 2019 - 1:32 a.m.
Remote Code Execution (RCE)
2019-12-2601:32:21
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.975 High
EPSS
Percentile
100.0%
mongo-express is vulnerable to remote code execution (RCE). The vulnerability exists as the value of vm of the toBSON method could be misused to perform an arbitrary exec.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mongo-express | le | 0.53.0 |
Related
githubexploit
githubexploit
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2020-01-05 14:05:56
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2020-12-01 09:18:57
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2019-12-26 06:58:56
osv
osv
Remote Code Execution Vulnerability in NPM mongo-express
2019-12-30 19:30:31
CVE-2019-10758
2019-12-24 22:15:11
cve
cve
CVE-2019-10758
2019-12-24 22:15:11
attackerkb
attackerkb
CVE-2019-10758
2019-07-15 00:00:00
checkpoint_advisories
checkpoint_advisories
MongoDB mongo-express Remote Code Execution (CVE-2019-10758)
2020-01-02 00:00:00
cisa_kev
cisa_kev
MongoDB mongo-express Remote Code Execution Vulnerability
2021-12-10 00:00:00
nessus
nessus
Mongo-Express < 0.54.0 RCE
2024-05-02 00:00:00
Mongo-Express < 0.54.0 RCE (CVE-2019-10758)
2024-06-14 00:00:00
cvelist
cvelist
CVE-2019-10758
2019-12-24 21:08:36
prion
prion
Remote code execution
2019-12-24 22:15:00
nvd
nvd
CVE-2019-10758
2019-12-24 22:15:11
github
github
Remote Code Execution Vulnerability in NPM mongo-express
2019-12-30 19:30:31
nuclei
nuclei
mongo-express Remote Code Execution
2022-02-10 21:31:25
cisa
cisa
CISA Adds Thirteen Known Exploited Vulnerabilities to Catalog
2021-12-10 00:00:00
CISA Adds 13 Known Exploited Vulnerabilities to Catalog
2021-12-10 00:00:00
qualysblog
qualysblog
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00