Compass
This hub aggregates every CVE we track for Compass, a product in the databases space. Use it to gauge the current risk picture and drill into individual advisories.
7
CVEs tracked
0
Critical
5
High
0
In CISA KEV
Severity distribution
HIGH5MEDIUM2
Monthly trend
1
0
0
0
0
0
0
1
0
0
0
0
0
0
1
0
0
0
0
0
0
0
1
0
2024-072026-06
Latest CVEs
The 7 most recently published vulnerabilities affecting Compass.
- CVE-2026-9101Prototype pollution in csv parsing4.3
- CVE-2025-0280HCL Compass is affected by a security vulnerability7.5
- CVE-2025-1755MongoDB Compass may be susceptible to local privilege escalation in Windows7.5
- CVE-2024-6376ejson shell parser in MongoDB Compass maybe bypassed7.0
- CVE-2024-3371Insufficient validation of external input in Compass may enable MITM attacks7.1
- CVE-2021-20334Local privilege escalation in MongoDB Compass for Windows4.8
- CVE-2018-10604SEL Compass version 3.0.5.1 and prior allows all users full access to the SEL Compass directory, which may allow modification or overwriting of files within the Compass installation folder, resulti...8.8
Product normalization is registry-driven with AI assist and human review. How it works