CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2022/09/23 7:15 p.m.•9 views

CVE-2022-35246

A NoSQL-Injection information disclosure vulnerability vulnerability exists in Rocket.Chat v5, v4.8.2 and v4.7.5 in the getS3FileUrl Meteor server method that can disclose arbitrary file upload URLs to users that should not be able to access...

4.3CVSS0.00597EPSS

Exploits1References1

OSV•added 2022/09/23 7:15 p.m.•11 views

CVE-2022-35246

4.3CVSS6.5AI score

Prion•added 2022/09/23 7:15 p.m.•16 views

Information disclosure

An information disclosure vulnerability exists in Rocket.Chat v5 due to the getUserMentionsByChannel meteor server method discloses messages from private channels and direct messages regardless of the users access permission to the room...

4CVSS6.1AI score0.00778EPSS

Prion•added 2022/09/23 7:15 p.m.•16 views

Information disclosure

4CVSS4.6AI score0.00597EPSS

Prion•added 2022/09/23 7:15 p.m.•20 views

Information disclosure

4CVSS4.4AI score0.00625EPSS

CVE•added 2022/09/23 6:28 p.m.•70 views

CVE-2022-35247

CVE-2022-35247 describes an information-disclosure in Rocket.Chat via the getRoomRoles Meteor method due to missing ACL checks. Affected: Rocket.Chat versions prior to 5, prior to 4.8.2, and prior to 4.7.5. The vulnerability allows an unauthorized client to leak channel members with special roles...

4.3CVSS4.3AI score0.00535EPSS

Vulnrichment•added 2022/09/23 6:28 p.m.•3 views

CVE-2022-35246

4.5AI score0.00597EPSS

Exploits1References1

Positive Technologies•added 2022/09/23 12:0 a.m.•4 views

PT-2022-22654 · Unknown · Rocket.Chat

Name of the Vulnerable Software and Affected Versions: Rocket.chat versions prior to 5 Rocket.chat versions prior to 4.8.2 Rocket.chat versions prior to 4.7.5 Description: A information disclosure issue exists due to the lack of ACL checks in the getRoomRoles Meteor method, which leaks channel...

4.3CVSS4.3AI score0.00535EPSS

Exploits1References5

OSSF Malicious Packages•added 2022/06/20 8:23 p.m.•2 views

Malicious code in meteor-spyfall (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3638e58cd83e5590fe7610f51aa64917a5f4343564976ad92eb858673ccde4b8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

OSV•added 2022/06/20 8:23 p.m.•9 views

MAL-2022-4574 Malicious code in meteor-spyfall (npm)

7AI score

Hacker One•added 2022/01/22 1:23 p.m.•22 views

Rocket.Chat: NoSQL-Injection discloses S3 File Upload URLs

Summary A NoSQL-Injection vulnerability in the getS3FileUrl Meteor server method can disclose arbitrary file upload URLs to users that should not be able to access. Description The fileId argument of the getS3FileUrl Meteor server method is not validated and can contain a regular expression. The...

4CVSS2AI score0.00597EPSS

Hacker One•added 2022/01/11 10:32 p.m.•35 views

Rocket.Chat: getRoomRoles Method leaks Channel Owner

Summary Lack of ACL checks in the getRoomRoles Meteor method leak channel members with special roles to unauthorized clients. Description Lack of ACL checks in the getRoomRoles Meteor method allow unauthorized clients to query channel members with special roles: javascript Meteor.methods...

4CVSS3.3AI score0.00535EPSS

Hacker One•added 2021/11/25 5:35 p.m.•27 views

Rocket.Chat: getUsersOfRoom discloses users in private channels

Summary Improper input data validation in the getUsersOfRoom Meteor server method allows authenticated users to enumerate existing rooms and subscribed users. Description Input data in the getUsersOfRoom Meteor server method is not type validated, so that MongoDB query operator objects are accept...

4CVSS0.6AI score0.00651EPSS

Hacker One•added 2021/11/22 10:33 a.m.•18 views

Rocket.Chat: Message ID Enumeration with Action Link Handler

Summary The actionLinkHandler method was found to allow Message ID Enumeration with Regex MongoDB queries. Releases Affected: The Meteor method actionLinkHandler calls an actionLinks wrapper getMessage to find affected messages: javascript Meteor.methods actionLinkHandlername, messageId if...

4CVSS1AI score0.00666EPSS

The Hacker News•added 2021/10/27 11:16 a.m.•20 views

Cyber Attack in Iran Reportedly Cripples Gas Stations Across the Country

A cyber attack in Iran left petrol stations across the country crippled, disrupting fuel sales and defacing electronic billboards to display messages challenging the regime's ability to distribute gasoline. Posts and videos circulated on social media showed messages that said, "Khamenei! Where is...

7AI score

Exploits0

Hacker One•added 2021/10/21 11:16 a.m.•27 views

Rocket.Chat: Message ID Enumeration with Regular Expression in getReadReceipts Meteor method

Summary The getReadReceipts Meteor server method does not properly filter user inputs that are passed to MongoDB queries, allowing $regex queries to enumerate arbitrary Message IDs. Description Authenticated users are able to query the getReadReceipts Meteor server method to enumerate existing...

4CVSS2.7AI score0.00686EPSS