Rocket.Chat is a set of open source team chat software. Rocket.Chat suffers from an information disclosure vulnerability that stems from the actionLinkHandler method allowing message ID enumeration using a Regex MongoDB query. An attacker could exploit the vulnerability to obtain sensitive information.