PT-2021-15254 · Rocket.Chat · Rocket.Chat
Igor Sak-Sakovskiy
+1
·
Published
2021-03-26
·
Updated
2021-03-30
·
CVE-2021-22886
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Rocket.Chat versions prior to 3.11
Rocket.Chat version 3.10.5
Rocket.Chat version 3.9.7
Rocket.Chat version 3.8.8
Description
The issue allows a remote attacker to inject arbitrary JavaScript in a message using nested markdown tags, leading to persistent cross-site scripting (XSS). This flaw can result in arbitrary file read and remote code execution (RCE) on the Rocket.Chat desktop app.
Recommendations
For Rocket.Chat version 3.8.8, update to a version later than 3.8.8 to resolve the issue.
For Rocket.Chat version 3.9.7, update to a version later than 3.9.7 to resolve the issue.
For Rocket.Chat version 3.10.5, update to a version later than 3.10.5 to resolve the issue.
For Rocket.Chat versions prior to 3.11, update to version 3.11 or later to resolve the issue.
Fix
RCE
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Rocket.Chat