All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2019-10758
NONEKEVpublish date unavailable
CVSS / 10
// description
mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the `toBSON` method.
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2021-12-10 00:00 UTC