EUVD-2026-25129

🗓️ 23 Apr 2026 00:31:19Reported by EUVDType

NoSQL injection in Rocket.Chat before 8.3.0 enables user account takeover with a generated token via an OAuth application.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2026-29198	22 Apr 202623:30	–	attackerkb
Circl	CVE-2026-29198	23 Apr 202621:25	–	circl
CNNVD	Rocket.Chat SQL注入漏洞	23 Apr 202600:00	–	cnnvd
CVE	CVE-2026-29198	22 Apr 202623:30	–	cve
Cvelist	CVE-2026-29198	22 Apr 202623:30	–	cvelist
Hacker One	Rocket.Chat: Complete authentication bypass to admin permissions	20 Feb 202610:54	–	hackerone
NVD	CVE-2026-29198	23 Apr 202600:16	–	nvd
Positive Technologies	PT-2026-34579	22 Apr 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-29198	5 Jun 202619:49	–	redhatcve
Vulnrichment	CVE-2026-29198	22 Apr 202623:30	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "d7fb3b98-84c6-38b4-93b5-b4c432612201",
        "vendor": {
          "name": "Rocket.Chat"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "03e07132-94e1-3a38-9a7a-ae6882036ab3",
        "product": {
          "name": "Rocket.Chat"
        },
        "product_version": "patch: 7.13.5"
      },
      {
        "id": "0612bbc0-c699-3986-990f-775c6e0c57c2",
        "product": {
          "name": "Rocket.Chat"
        },
        "product_version": "patch: 8.3.0"
      },
      {
        "id": "17d21ab3-ba8d-3718-bb7e-cda13a5ae674",
        "product": {
          "name": "Rocket.Chat"
        },
        "product_version": "patch: 7.11.6"
      },
      {
        "id": "52bf2930-8a55-32d4-ac73-70e3ec6aa418",
        "product": {
          "name": "Rocket.Chat"
        },
        "product_version": "patch: 8.2.1"
      },
      {
        "id": "5d70b2c4-b101-30fd-92de-b3e2a91ae4e6",
        "product": {
          "name": "Rocket.Chat"
        },
        "product_version": "patch: 7.12.6"
      },
      {
        "id": "65bf845e-bd44-3c3e-b5f8-76f6a5d526a9",
        "product": {
          "name": "Rocket.Chat"
        },
        "product_version": "patch: 7.10.9"
      },
      {
        "id": "d50ad75c-9e14-350a-9f3e-dc4b8b72f0a0",
        "product": {
          "name": "Rocket.Chat"
        },
        "product_version": "patch: 8.0.3"
      }
    ]
  }
]

Source	Link
hackerone	www.hackerone.com/reports/3564655
github	www.github.com/RocketChat/Rocket.Chat/pull/39492
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-29198

23 Apr 2026 00:31Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.19.8

EPSS0.00308

SSVC