CVE-2019-10758: MongoDB mongo-express Remote Code Execution Vulnerability
#mongodb#mongoexpress#cybersecurity#vulnerability
Freedom Coder

Freedom Coder @freedom-coder

About: love coding.

Joined:
Apr 17, 2025

CVE-2019-10758: MongoDB mongo-express Remote Code Execution Vulnerability

Publish Date: Dec 24 '25
0 0

CVE ID

CVE-2019-10758

Vulnerability Name

MongoDB mongo-express Remote Code Execution Vulnerability

  • Project: MongoDB
  • Product: mongo-express

Date

  • Date Added: 2021-12-10
  • Due Date: 2022-06-10

Description

mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the toBSON method.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2019-10758

Related Security News

More CVEs Info

Common Vulnerabilities & Exposures (CVE) List

Comments 0 total

    Add comment