Lucene search

HackeroneCVELIST:CVE-2023-28357

HistoryMay 11, 2023 - 12:00 a.m.

CVE-2023-28357

2023-05-1100:00:00

CWE-200

hackerone

www.cve.org

cve-2023-28357

rocket.chat

vulnerability

acl

slash command

/mute

private channel

unauthorized access

authenticated users

enumeration

username

4.8 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.7%

JSON

A vulnerability has been identified in Rocket.Chat, where the ACL checks in the Slash Command /mute occur after checking whether a user is a member of a given channel, leaking private channel members to unauthorized users. This allows authenticated users to enumerate whether a username is a member of a channel that they do not have access to.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Rocket.Chat",
    "versions": [
      {
        "version": "This issue has been fixed in version 6.0> and is backported for the supported versions. Check this document for more info: https://docs.rocket.chat/resources/get-support/enterprise-support#rocket.chat-versions",
        "status": "affected"
      }
    ]
  }
]

References

hackerone.com/reports/1445810