Rocket.Chat before 3.11, 3.10.5, 3.9.7, 3.8.8 is vulnerable to persistent cross-site scripting (XSS) using nested markdown tags allowing a remote attacker to inject arbitrary JavaScript in a message. This flaw leads to arbitrary file read and RCE on Rocket.Chat desktop app.
References
Link | Resource |
---|---|
https://docs.rocket.chat/guides/security/security-updates | Vendor Advisory |
https://github.com/RocketChat/Rocket.Chat/pull/20430 | Patch Third Party Advisory |
https://hackerone.com/reports/1014459 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hackerone
Published: 2021-03-26T18:15:54
Updated: 2021-03-26T18:15:54
Reserved: 2021-01-06T00:00:00
Link: CVE-2021-22886
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-03-26T19:15:11.913
Modified: 2021-03-30T20:26:41.133
Link: CVE-2021-22886
JSON object: View
Redhat Information
No data.
CWE