CVE-2021-22892 - AskarLabs CVE Database

CVE-2021-22892

Vendor N/A

Product Rocket.Chat server

Weakness CWE-200 · Info exposure

Published May 27, 2021

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

An information disclosure vulnerability exists in the Rocket.Chat server fixed v3.13, v3.12.2 & v3.11.3 that allowed email addresses to be disclosed by enumeration and validation checks.

Key dates

02Disclosure timeline

May 27, 2021 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-22892

Related vulnerabilities

04Related CVE

CVE-2026-28506 Outline's Information Disclosure in Activity Logs allows User Enumeration of Private Drafts CVE-2021-25122 Apache Tomcat h2c request mix-up CVE-2026-21260 Microsoft Outlook Spoofing Vulnerability CVE-2024-10916 D-Link DNS-320/DNS-320LW/DNS-325/DNS-340L HTTP GET Request info.xml information disclosure CVE-2024-45039 gnark's Groth16 commitment extension unsound for more than one commitment