CVE-2023-28358 in Rocket.Chatالمعلومات

الملخص

بحسب MITRE • 12/05/2023

A vulnerability has been discovered in Rocket.Chat where a markdown parsing issue in the "Search Messages" feature allows the insertion of malicious tags. This can be exploited on servers with content security policy disabled possible leading to some issues attacks like account takeover.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

حجز

15/03/2023

إفشاء

12/05/2023

الاعتدال

تمت الموافقة

إدخال

VDB-228856

EPSS

0.00389

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to stay up to date on a daily basis?

Enable the mail alert feature now!