CVE-2021-22911

high-risk
Published 2021-05-27

A improper input sanitization vulnerability exists in Rocket.Chat server 3.11, 3.12 & 3.13 that could lead to unauthenticated NoSQL injection, resulting potentially in RCE.

Do I need to act?

!
92.3% chance of exploitation in next 30 days
EPSS score — higher than 8% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
2 public exploits available
49960, 50108
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (3)

Affected Vendors

Rocket.Chat

References (8)

Exploit http://packetstormsecurity.com/files/162997/Rocket.Chat-3.12.1-NoSQL-Injection-C...
Exploit http://packetstormsecurity.com/files/163419/Rocket.Chat-3.12.1-NoSQL-Injection-C...
Exploit https://blog.sonarsource.com/nosql-injections-in-rocket-chat
Exploit https://hackerone.com/reports/1130721
Exploit http://packetstormsecurity.com/files/162997/Rocket.Chat-3.12.1-NoSQL-Injection-C...
Exploit http://packetstormsecurity.com/files/163419/Rocket.Chat-3.12.1-NoSQL-Injection-C...
Exploit https://blog.sonarsource.com/nosql-injections-in-rocket-chat
Exploit https://hackerone.com/reports/1130721
68
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 27/34 · High
Exposure 9/34 · Low