Lucene search
SnykCVELIST:CVE-2019-10758HistoryDec 24, 2019 - 9:08 p.m.
CVE-2019-10758
2019-12-2421:08:36
snyk
www.cve.org
1
mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the toBSON method. A misuse of the vm dependency to perform exec commands in a non-safe environment.
CNA Affected
[
{
"product": "mongo-express",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "All versions prior to version 0.54.0"
}
]
}
]References
Related
checkpoint_advisories
checkpoint_advisories
MongoDB mongo-express Remote Code Execution (CVE-2019-10758)
2020-01-02 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-12-26 01:32:21
cisa_kev
cisa_kev
MongoDB mongo-express Remote Code Execution Vulnerability
2021-12-10 00:00:00
osv
osv
CVE-2019-10758
2019-12-24 22:15:11
Remote Code Execution Vulnerability in NPM mongo-express
2019-12-30 19:30:31
nessus
nessus
Mongo-Express < 0.54.0 RCE
2024-05-02 00:00:00
Mongo-Express < 0.54.0 RCE (CVE-2019-10758)
2024-06-14 00:00:00
cve
cve
CVE-2019-10758
2019-12-24 22:15:11
attackerkb
attackerkb
CVE-2019-10758
2019-07-15 00:00:00
githubexploit
githubexploit
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2020-01-05 14:05:56
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2020-12-01 09:18:57
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2019-12-26 06:58:56
prion
prion
Remote code execution
2019-12-24 22:15:00
nvd
nvd
CVE-2019-10758
2019-12-24 22:15:11
nuclei
nuclei
mongo-express Remote Code Execution
2022-02-10 21:31:25
github
github
Remote Code Execution Vulnerability in NPM mongo-express
2019-12-30 19:30:31
cisa
cisa
CISA Adds Thirteen Known Exploited Vulnerabilities to Catalog
2021-12-10 00:00:00
CISA Adds 13 Known Exploited Vulnerabilities to Catalog
2021-12-10 00:00:00
qualysblog
qualysblog
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00