A vulnerability was found in Rocket.Chat Server up to 3.11.3/3.12.3/3.13.1 (Chat Software) and classified as critical. Affected by this issue is some unknown processing of the component Endpoint. Upgrading to version 3.11.4, 3.12.4 or 3.13.2 eliminates this vulnerability.
Rocket.Chat Server up to 3.11.3/3.12.3/3.13.1 Endpoint sql injection
- Virtual Patching
- August 10, 2021
- 9:05 am
Contact us to get started
CVE-2024-26817 : LINUX KERNEL UP TO 6.8.5 AMDKFD KZALLOC INTEGER OVERFLOW
Description In the Linux kernel, the following vulnerability has been resolved: amdkfd: use calloc instead of kzalloc to avoid integer
CVE-2024-3400 : PALO ALTO NETWORKS PAN-OS GLOBALPROTECT COMMAND INJECTION
Description A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and
CVE-2024-21508 : MYSQL2 UP TO 3.9.3 READCODEFOR BIGNUMBERSTRINGS CODE INJECTION
Description Versions of the package mysql2 before 3.9.4 are vulnerable to Remote Code Execution (RCE) via the readCodeFor function due