← Back to Search

MongoDB (mongo-express)

2021-12-10 · Severity 5/10 — Medium · Web_app_exploit
Incident Summary

mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the `toBSON` method.

Sources
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Details
Records Affected
Unknown
Industry
Technology
Headquarters
Date Reported
2021-12-10
Related Breaches

No related breaches in the last 90 days.