Lucene search

CVE-2020-29594

🗓️ 30 Dec 2020 07:12:15Reported by [email protected]Type

Rocket.Chat mishandles SAML login in versions before 0.74.4, 1.x before 1.3.4, 2.x before 2.4.13, 3.x before 3.7.3, 3.8.x before 3.8.3, and 3.9.x before 3.9.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
OSV	CVE-2020-29594	30 Dec 202007:15	–	osv
CVE	CVE-2020-29594	30 Dec 202007:15	–	cve
Cvelist	CVE-2020-29594	30 Dec 202006:17	–	cvelist
Hacker One	Rocket.Chat: SAML authentication bypass through unauthenticated `addSamlProvider` Meteor Call	3 Dec 202003:40	–	hackerone
Prion	Design/Logic Flaw	30 Dec 202007:15	–	prion

Nvd

Node

rocket.chat rocket.chatRange<0.74.4

rocket.chat rocket.chatRange1.0.0–1.3.4

rocket.chat rocket.chatRange2.0.0–2.4.13

rocket.chat rocket.chatRange3.0.0–3.7.3

rocket.chat rocket.chatRange3.8.0–3.8.3

rocket.chat rocket.chatRange3.9.0–3.9.1

Source	Link
github	www.github.com/RocketChat/Rocket.Chat/releases/tag/3.9.1
github	www.github.com/RocketChat/Rocket.Chat/compare/3.8.2...3.8.3

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Dec 2020 07:15Current

9.5High risk

Vulners AI Score9.5

CVSS27.5

CVSS39.8

EPSS0.00397