Exposures › CVE-2019-10758
mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the `toBSON` method.
mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the `toBSON` method.
| Product | Provider | Status | Match |
|---|---|---|---|
| MongoDB Atlas for Government | MongoDB | Authorized | vendor-exact · 0.90 |