CVE-2021-22892

An information disclosure vulnerability exists in the Rocket.Chat server fixed v3.13, v3.12.2 & v3.11.3 that allowed email addresses to be disclosed by enumeration and validation checks.
References
Link Resource
https://hackerone.com/reports/1089116 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:rocket.chat:rocket.chat:*:*:*:*:*:*:*:*
cpe:2.3:a:rocket.chat:rocket.chat:3.12.3:*:*:*:*:*:*:*
cpe:2.3:a:rocket.chat:rocket.chat:3.12.4:*:*:*:*:*:*:*
cpe:2.3:a:rocket.chat:rocket.chat:*:*:*:*:*:*:*:*
cpe:2.3:a:rocket.chat:rocket.chat:3.12.5:*:*:*:*:*:*:*

Information

Published : 2021-05-27 12:15

Updated : 2022-08-30 07:10


NVD link : CVE-2021-22892

Mitre link : CVE-2021-22892

Products Affected
No products.
CWE