Unrated severityNVD Advisory· Published Jan 8, 2021· Updated Aug 4, 2024
CVE-2020-28208
CVE-2020-28208
Description
An email address enumeration vulnerability exists in the password reset function of Rocket.Chat through 3.9.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Rocket.Chat/Rocket.Chatdescription
- Range: <=3.9.1
Patches
Vulnerability mechanics
References
8- packetstormsecurity.com/files/160845/Rocket.Chat-3.7.1-Email-Address-Enumeration.htmlmitrex_refsource_MISC
- seclists.org/fulldisclosure/2021/Jan/32mitremailing-listx_refsource_FULLDISC
- seclists.org/fulldisclosure/2021/Jan/43mitremailing-listx_refsource_FULLDISC
- www.openwall.com/lists/oss-security/2021/01/07/1mitremailing-listx_refsource_MLIST
- www.openwall.com/lists/oss-security/2021/01/08/1mitremailing-listx_refsource_MLIST
- www.openwall.com/lists/oss-security/2021/01/13/1mitremailing-listx_refsource_MLIST
- trovent.github.io/security-advisories/TRSA-2010-01/TRSA-2010-01.txtmitrex_refsource_MISC
- trovent.io/security-advisory-2010-01mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.