CVE-2023-28317 - AskarLabs CVE Database

CVE-2023-28317

Vendor N/A

Product Rocket.Chat

Weakness CWE-285

Published May 9, 2023

Last update January 28, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A vulnerability has been discovered in Rocket.Chat, where editing messages can change the original timestamp, causing the UI to display messages in an incorrect order.

Key dates

02Disclosure timeline

May 9, 2023 CVE published

January 28, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-28317

Related vulnerabilities

04Related CVE

CVE-2022-34256 Adobe Commerce Improper Authorization Privilege escalation CVE-2020-3394 Cisco Nexus 3000 and 9000 Series Switches Privilege Escalation Vulnerability CVE-2026-45503 Microsoft Exchange Server Information Disclosure Vulnerability CVE-2026-28431 Misskey lacks proper authorization checks and input validation CVE-2019-14870