Unrated severityNVD Advisory· Published Sep 2, 2024· Updated Mar 13, 2025
CVE-2024-45621
CVE-2024-45621
Description
The Electron desktop application of Rocket.Chat through 6.3.4 allows stored XSS via links in an uploaded file, related to failure to use a separate browser upon encountering third-party external actions from PDF documents.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=6.3.4
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.