Every CVE whose affected-product data names Mongodb Ops Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-7927 — CVSS 8.1 (high): Specially crafted API calls may allow an authenticated user who holds Organization Owner privilege to obtain an API key with Global Role…
CVE-2021-20335 — CVSS 6.7 (medium): For MongoDB Ops Manager versions prior to and including 4.2.24 with multiple OM application servers, that have SSL turned on for their…
CVE-2019-2388 — CVSS 5.8 (medium): In affected Ops Manager versions there is an exposed http route was that may allow attackers to view a specific access log of a publicly…