{ "affected": [ { "database_specific": { "unresolved_ranges": [ { "events": [ { "introduced": "0" }, { "last_affected": "3.11.0-rc0" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "3.11.0-rc1" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "3.11.0-rc2" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "3.11.0-rc3" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "3.11.0-rc4" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "3.11.0-rc5" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "3.11.0-rc6" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "3.11.0-rc7" } ] } ] }, "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "fixed": "3.8.8" }, { "introduced": "3.9.0" }, { "fixed": "3.9.7" }, { "introduced": "3.10.0" }, { "fixed": "3.10.5" } ] }, "events": [ { "introduced": "0" }, { "fixed": "95ed038f24ca3a43dc4e2b899197b53477d8f40e" }, { "introduced": "d05e26f4fc0d770bfdaed7e8b81a55dbc85dc1d3" }, { "fixed": "f753e7a127bd77049a4057989f2d1f8ba501a3c6" }, { "introduced": "3a13cead22bfc1100c5b89069498919473c84195" }, { "fixed": "1e36f4183852248cece3b1ad092bc566a8cfbd52" } ], "repo": "https://github.com/rocketchat/rocket.chat", "type": "GIT" } ] } ], "details": "Rocket.Chat before 3.11, 3.10.5, 3.9.7, 3.8.8 is vulnerable to persistent cross-site scripting (XSS) using nested markdown tags allowing a remote attacker to inject arbitrary JavaScript in a message. This flaw leads to arbitrary file read and RCE on Rocket.Chat desktop app.", "id": "CVE-2021-22886", "modified": "2026-03-13T21:54:01.959490717Z", "published": "2021-03-26T19:15:11.913Z", "references": [ { "type": "ADVISORY", "url": "https://docs.rocket.chat/guides/security/security-updates" }, { "type": "ADVISORY", "url": "https://hackerone.com/reports/1014459" }, { "type": "FIX", "url": "https://github.com/RocketChat/Rocket.Chat/pull/20430" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "type": "CVSS_V3" } ] }