COOEY // HUBcompliance · community · intelligence

FAIL › dossier

MongoDB company FedRAMP market

FedRAMP provider ·

2
failure events
0
zero-days
1
RCEs
2
on KEV
0
critical
65
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 2 events

DateEventSevFlagsShameSummary
2021-12-10 CVE-2019-10758 high ⚡RCE ⌖KEV 65 mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the `toBSON` method.
2025-12-29 CVE-2025-14847 high ⌖KEV 50 MongoDB Server contains an improper handling of length parameter inconsistency vulnerability in Zlib compressed protocol headers. This vulnerability may allow a read of uninitialized heap memory by an unauthenticated client.

FedRAMP catalog products 1

ProductStatusImpact
MongoDB Atlas for Government Authorized Moderate