Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Navigation

    Cloudron Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    A short story from an admin perspective

    Rocket.Chat
    2
    2
    56
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • luckow
      luckow last edited by

      Today I was informed on one of my daily news websites about a security problem in rocket.chat.
      https://www.heise.de/news/Rocket-Chat-Luecke-erlaubte-Remote-Code-Execution-durch-praeparierte-Nachrichten-4873678.html (in german)
      https://blog.redteam.pl/2020/08/rocket-chat-xss-rce-cve-2020-15926.html (in english)

      Since rocket.chat is part of the critical communication infrastructure in my company, I had a brief moment of "Oh, wait. This is important and I must react now".

      I opened the dashboard of Cloudron and took a quick look at the version number of the rocket.chat app and ...

      Many thanks to the Cloudron team. I'm safe because of the "built-in" admin 🙂

      Pronouns: he/him
      Primary language: German
      A big fan of Vulfpeck, Scary Pockets & Jacob Collier

      1 Reply Last reply Reply Quote 5
      • yusf
        yusf last edited by

        Yup, your story sums up my Cloudron experience. 😄

        2988aeb5-9a88-4409-8585-d2e137e0fb26-bild.png

        1 Reply Last reply Reply Quote 3
        • First post
          Last post