Every CVE whose affected-product data names Mongodb Js-bson, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-13863 — CVSS 7.5 (high): The MongoDB bson JavaScript module (also known as js-bson) versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression…
CVE-2019-2391 — CVSS 4.2 (medium): Incorrect parsing of certain JSON input may result in js-bson not correctly serializing BSON. This may cause unexpected application…