Vulnerability Details : CVE-2021-22911
A improper input sanitization vulnerability exists in Rocket.Chat server 3.11, 3.12 & 3.13 that could lead to unauthenticated NoSQL injection, resulting potentially in RCE.
Products affected by CVE-2021-22911
- cpe:2.3:a:rocket.chat:rocket.chat:3.11.0:-:*:*:*:*:*:*
- cpe:2.3:a:rocket.chat:rocket.chat:3.12.0:-:*:*:*:*:*:*
- cpe:2.3:a:rocket.chat:rocket.chat:3.13.0:-:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-22911
95.70%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-22911
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST | |
9.8
|
CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2021-22911
-
The product does not adequately filter user-controlled input for special elements with control implications.Assigned by: support@hackerone.com (Secondary)
References for CVE-2021-22911
-
http://packetstormsecurity.com/files/163419/Rocket.Chat-3.12.1-NoSQL-Injection-Code-Execution.html
Rocket.Chat 3.12.1 NoSQL Injection / Code Execution ≈ Packet StormExploit;Third Party Advisory;VDB Entry
-
https://blog.sonarsource.com/nosql-injections-in-rocket-chat
NoSQL Injections in Rocket.Chat 3.12.1: How A Small Leak Grounds A RocketExploit;Third Party Advisory
-
http://packetstormsecurity.com/files/162997/Rocket.Chat-3.12.1-NoSQL-Injection-Code-Execution.html
Rocket.Chat 3.12.1 NoSQL Injection / Code Execution ≈ Packet StormExploit;Third Party Advisory;VDB Entry
-
https://hackerone.com/reports/1130721
#1130721 Pre-Auth Blind NoSQL Injection leading to Remote Code ExecutionExploit;Third Party Advisory
Jump to