Online session

Building secure chat experiences that convert, engage, and retain users

Save your seat!

Security Vulnerability in 0.57.3, 0.58.3 and below

Gabriel Engel
January 17, 2018
·
5
min read
Share this on:

All users are advised to upgrade Rocket.Chat Server to 0.57.4, 0.58.4, 0.59.0 or greater.Rocket.Chat Server version 0.58.3, 0.57.3 and prior versions are vulnerable to a NoSQL injection which can lead to an administrator account takeover.Thank you to Steeve Barbeau for identifying and reporting the vulnerability. The details of the vulnerability will be shared in a future update.If you have any questions, concerns or require advice please contact security@rocket.chat or chat to us on https://open.rocket.chat/channel/support.Nick van den Berg

Gabriel Engel is the CEO and co-founder of Rocket.Chat, the leading open source communications platform.
Gabriel Engel
Related Article:
Team collaboration: 5 reasons to improve it and 6 ways to master it

Our best content, once a week

Relevant articles

See All
Sep 16, 2022
Product Updates

Product Roundup: What’s new in Rocket.Chat 5.1

Aug 8, 2022
Product Updates

Product Roundup: The all-new Matrix Federation, video conferencing apps and more!

Jun 30, 2022
Product Updates

Introducing Rocket.Chat’s Updated and Simplified Pricing

Jun 3, 2022
Product Updates

Product Roundup: Improved mobile app, admin and Marketplace interface and UX