CVE-2022-30124

CVE-2022-30124

Vendor N/A
Product Rocket.Chat Mobile app
Weakness CWE-287 · Improper authentication
Published September 23, 2022
Last update May 22, 2025

CVSS base score

What the vulnerability does

01Description

An improper authentication vulnerability exists in Rocket.Chat Mobile App <4.14.1.22788 that allowed an attacker with physical access to a mobile device to bypass local authentication (PIN code).

Key dates

02Disclosure timeline

September 23, 2022 CVE published
May 22, 2025 Record updated