CVE-2024-39713 | Rocket.Chat up to 6.10.0 Twilio Webhook Endpoint server-side request forgery

Posted by Angelo Barbosa | Aug 5, 2024 | CVE

A vulnerability was found in Rocket.Chat up to 6.10.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Twilio Webhook Endpoint. The manipulation leads to server-side request forgery.

This vulnerability is known as CVE-2024-39713. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39713 | Rocket.Chat up to 6.10.0 Twilio Webhook Endpoint server-side request forgery

Related Posts

CVE-2024-41121 | woodpecker-ci woodpecker up to 2.6.x injection

CVE-2024-42676 | Huizhi Enterprise Resource Management System up to 1.0 DNPageAjaxPostBack /nssys/common/Upload unrestricted upload

CVE-2023-52597 | Linux Kernel up to 6.7.3 s390 kvm_arch_vcpu_ioctl_set_fpu memory corruption

CVE-2024-5680 | Schneider Electric EcoStruxure Foxboro DCS Core Control Services up to 9.8 Foxboro.sys array index (SEVD-2024-191-02)