CNNVD-202509-139 Information

CNNVD ID

CNNVD-202509-139

Related CVE

CVE-2025-7974

• CNNVD Published: 2025-09-02

Description (Chinese)

Rocket.Chat是Rocket.Chat公司的一个聊天软件。 rocket.chat存在安全漏洞，该漏洞源于授权不当，可能导致敏感信息泄露。

Description (English)

Rocket.Chat is a chat software for Rocket.Chat. There is a security loophole in Rocket.chat, which stems from improper authorization and may lead to the disclosure of sensitive information.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

Rocket.Chat

Published

2025-09-02

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-627/ https://nvd.nist.gov/vuln/detail/CVE-2025-7974

Patch

https://github.com/RocketChat/Rocket.Chat/releases