Lucene search
K

CVE-2021-22910

🗓️ 09 Aug 2021 12:27:46Reported by hackeroneType 
cve
 cve
🔗 web.nvd.nist.gov👁 120 Views

A sanitization vulnerability in Rocket.Chat server versions <3.13.2 allowed NoSQL injection leading to RCE

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2021-22910
9 Aug 202116:36
circl
CNNVD
Rocket.Chat 安全漏洞
9 Aug 202100:00
cnnvd
Cvelist
CVE-2021-22910
9 Aug 202112:27
cvelist
EUVD
EUVD-2021-10039
7 Oct 202500:30
euvd
Hacker One
Rocket.Chat: Post-Auth Blind NoSQL Injection in the users.list API leads to Remote Code Execution
19 Mar 202117:31
hackerone
NVD
CVE-2021-22910
9 Aug 202113:15
nvd
Prion
Sql injection
9 Aug 202113:15
prion
Positive Technologies
PT-2021-15267 · Unknown · Rocket.Chat
9 Aug 202100:00
ptsecurity
RedhatCVE
CVE-2021-22910
9 Jan 202611:22
redhatcve
NVD
Vulners
Node
OR
rocket.chatrocket.chatRange3.12.03.12.4
OR
rocket.chatrocket.chatRange3.13.03.13.2
[
  {
    "product": "Rocket.Chat server",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Fixed versions: 3.13.2, 3.12.4, 3.11.4"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 03:38Current
9.2High risk
Vulners AI Score9.2
CVSS 27.5
CVSS 3.19.8
EPSS0.02265
120