Rolfzur

**Name of the Vulnerable Software and Affected Versions** Rocket.Chat versions prior to 4.6.4 **Description** A cleartext storage of sensitive information exists due to an Oauth token being leaked in plaintext in Rocket.Chat logs. **Recommendations** For versions prior to 4.6.4, update to version 4.6.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the Rocket.Chat logs to minimize the risk of exploitation.