CVE-2025-5892 | RocketChat up to 7.6.1 parseMessage.js parseMessage line redos (ID 35711)

Inserito da Angelo Barbosa | Giu 9, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in RocketChat up to 7.6.1. This issue affects the function parseMessage of the file /apps/meteor/app/irc/server/servers/RFC2813/parseMessage.js. The manipulation of the argument line leads to inefficient regular expression complexity.

The identification of this vulnerability is CVE-2025-5892. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-5892 | RocketChat up to 7.6.1 parseMessage.js parseMessage line redos (ID 35711)

Post correlati

CVE-2025-0348 | CampCodes DepEd Equipment Inventory System 1.0 /data/add_employee.php data cross site scripting

CVE-2024-13537 | ttoomey C9 Blocks Plugin up to 1.7.7 on WordPress composer-setup.php information exposure

CVE-2024-11314 | TRCore DVC up to 6.3 path traversal

CVE-2023-5600 | GitLab Enterprise Edition up to 16.3.5/16.4.1/16.5.0 Service-Desk Custom Email Template authorization (Issue 428268 / EUVD-2023-57893)