CVE-2024-46935

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-46935

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-46935.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-46935

Aliases

GHSA-6375-pg5j-8wph

Published

2024-09-25T01:15:44.650Z

Modified

2025-11-19T17:35:32.562085Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and earlier is vulnerable to denial of service (DoS). Attackers who craft messages with specific characters may crash the workspace due to an issue in the message parser.

References

Affected packages

Git / github.com/rocketchat/rocket.chat

Affected ranges

Type: GIT
Repo: https://github.com/rocketchat/rocket.chat
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

f31f31ef96e54751f0e7ba45eb70457ae83df798

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-46935.json"