{
  "affected": [
    {
      "ranges": [
        {
          "database_specific": {
            "versions": [
              {
                "introduced": "0"
              },
              {
                "fixed": "4.7.5"
              },
              {
                "introduced": "4.8.0"
              },
              {
                "fixed": "4.8.2"
              }
            ]
          },
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4574bc09e9a4fd4cf94c412c0f79f1212af3f8ed"
            },
            {
              "introduced": "0e3863992899da327d181c377d5f4644fef57590"
            },
            {
              "fixed": "abec1f943fd69d95290eba442917e95001478f7c"
            }
          ],
          "repo": "https://github.com/rocketchat/rocket.chat",
          "type": "GIT"
        }
      ]
    }
  ],
  "details": "A NoSQL-Injection information disclosure vulnerability vulnerability exists in Rocket.Chat \u003cv5, \u003cv4.8.2 and \u003cv4.7.5 in the getS3FileUrl Meteor server method that can disclose arbitrary file upload URLs to users that should not be able to access.",
  "id": "CVE-2022-35246",
  "modified": "2026-03-13T21:50:46.838365416Z",
  "published": "2022-09-23T19:15:13.900Z",
  "references": [
    {
      "type": "REPORT",
      "url": "https://hackerone.com/reports/1458020"
    }
  ],
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}