CVE-2019-2388
CVE-2019-2388 corresponds to an information-disclosure issue in MongoDB Ops Manager. Affected versions: MongoDB Ops Manager 4.0.9–4.0.10 and 4.1.5. The root cause is an exposed HTTP route that can allow an attacker to view a specific access log from a publicly exposed Ops Manager instance. Impact...