HIGH 7.5

CVE-2026-32995

Rocket.Chat contains an authentication bypass vulnerability in its direct message protocol (DDP) translation feature. An authenticated user—even without access to specific rooms or channels—can read private messages, direct messages, and end-to-end encrypted messages from other users by exploiting an unprotected DDP method. The flaw stems from insufficient permission checks when a client requests message translation, allowing lateral message enumeration across the entire Rocket.Chat instance.

Source data · NVD / CISA · public domain

CVSS
3.0 · 7.5 HIGH · CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Weaknesses (CWE)
CWE-284
Affected products
0 configuration(s)
Published / Modified
2026-05-28 / 2026-06-17

NVD description (verbatim)

The Rocket.Chat DDP method autoTranslate.translateMessage in versions <8.5.0, <8.4.2, <8.3.4, <8.2.4, <8.1.5, <8.0.5, <7.13.8, and <7.10.12 accepts a client-supplied IMessage object and passes it directly to translateMessage() without checking Meteor.userId() or verifying room membership. Any authenticated DDP user can read the content of any message by ID from any room (private channels, DMs, E2EE rooms) by calling this method.

2 reference(s) · View on NVD →

SEC.co analysis · AI-assisted, reviewed against source

Technical summary

CVE-2026-32995 exploits the autoTranslate.translateMessage DDP method in affected Rocket.Chat versions. The method accepts a client-supplied IMessage object and forwards it to translateMessage() without calling Meteor.userId() validation or verifying the requesting user's membership in the message's source room. Because DDP (Distributed Data Protocol) requires only basic authentication to establish a connection, any authenticated user can craft a malicious DDP call specifying an arbitrary message ID and retrieve its plaintext content, circumventing room-level access controls. This is particularly severe in environments using private channels, direct messages, or end-to-end encryption, where the vulnerability exposes content that should be inaccessible.

Business impact

This vulnerability enables unauthorized information disclosure at scale within Rocket.Chat deployments. Attackers with valid credentials can systematically extract sensitive communications: confidential business discussions in private channels, personal messages between employees, and legally protected conversations. For regulated organizations (finance, healthcare, legal services), the ability to read encrypted messages post-facto undermines data protection compliance (HIPAA, GDPR, SOX). The breach of trust—that private channels are actually private—can damage client relationships and internal team confidence. Organizations relying on Rocket.Chat for sensitive workflows face both immediate data loss and downstream liability if communications are exfiltrated.

Affected systems

All Rocket.Chat versions prior to 8.5.0 are affected. Specifically, versions <8.4.2, <8.3.4, <8.2.4, <8.1.5, <8.0.5, <7.13.8, and <7.10.12 are vulnerable. Instances on any of these versions with network-accessible DDP endpoints and at least one authenticated user account are at risk. Self-hosted and SaaS Rocket.Chat deployments are equally vulnerable if running unpatched versions.

Exploitability

Exploitability is moderate to high. The attack requires only valid Rocket.Chat credentials (which are easy to obtain if the instance allows registration or if an attacker already has a legitimate user account). No additional privileges, user interaction, or special network position are required; the CVSS vector confirms network-level accessibility with no authentication escalation needed beyond a basic DDP session. However, the attacker must know or guess message IDs to target specific messages, which adds minor friction. Automated enumeration of message IDs across time ranges is feasible, making systematic extraction practical. No known public exploit code has been disclosed as of this writing, but the attack surface is straightforward enough that proof-of-concept tools could be rapidly developed.

Remediation

Apply patches immediately: upgrade to Rocket.Chat 8.5.0 or later, or apply backports to supported versions (8.4.2, 8.3.4, 8.2.4, 8.1.5, 8.0.5, 7.13.8, or 7.10.12). Verify against the official Rocket.Chat security advisory for exact patch URLs and installation steps. For instances unable to patch immediately, consider: restricting DDP access via network-level controls (firewall rules limiting DDP connections to trusted IPs), disabling the autoTranslate feature if not in use, and auditing user account creation to minimize credential compromise. These are temporary mitigations only and do not eliminate the underlying vulnerability.

Patch guidance

Rocket.Chat has released patched versions for each supported branch. Upgrade following the release notes for your current version to the specified minimum patched version. Test upgrades in a staging environment first, as Rocket.Chat upgrades can affect connected clients and integrations. For organizations on extended support or legacy versions not listed, contact Rocket.Chat support to confirm patch availability. Document the pre-upgrade state of user accounts and message histories in case rollback diagnostics are needed. Post-upgrade, verify that DDP connectivity is restored and the autoTranslate feature functions normally if enabled.

Detection guidance

Monitor DDP connections and method calls for unusual patterns: look for authentication logs showing a single user making an unusually high volume of autoTranslate.translateMessage calls, especially across multiple rooms or with message IDs that the user should not have access to. Enable Rocket.Chat audit logging if available and parse logs for repeated calls to the autoTranslate method from non-administrative users. Network detection can identify DDP traffic spikes or repeated connections from the same source IP. Threat hunters should cross-reference DDP audit logs with room membership lists to identify calls originating from users who do not belong to the rooms where the targeted messages originated. If end-to-end encryption is enabled, baseline the read patterns of E2EE messages and flag anomalies.

Why prioritize this

This vulnerability merits immediate patching because it enables silent, unauthorized read access to all message types including encrypted communications, affects any authenticated user without special privilege, and is trivially exploitable once message IDs are known. The scope of exposure is organization-wide, affecting all rooms and users. Organizations in regulated industries or those storing highly sensitive IP, legal, or personal data should treat this as critical. Even if DDP is not actively used by all clients, the presence of a single exposed DDP listener creates risk.

Risk score, explained

The CVSS 3.0 score of 7.5 (HIGH) reflects high-impact confidentiality loss with no integrity or availability impact. The attack vector is network-based, attack complexity is low, and no privileges or user interaction are required beyond a valid DDP session. While the confidentiality impact is severe (complete read access to messages), the attack does not escalate to system compromise, lateral movement, or data modification. The score appropriately reflects a serious information disclosure vulnerability that falls short of critical severity because exploitation is confined to message content retrieval and does not enable account takeover, code execution, or system-wide outages.

Frequently asked questions

Can an attacker read messages from encrypted (E2EE) rooms?

Yes. While the message content stored in the database may be encrypted at rest, the autoTranslate method retrieves and decrypts messages server-side before passing them to the translation engine. An attacker exploiting this vulnerability bypasses the E2EE protection entirely and receives plaintext message content. E2EE is not effective against a compromised or malicious server-side DDP method.

Do I need to rotate user credentials if I suspect this vulnerability was exploited?

Yes, as a precaution. If audit logs show suspicious DDP activity during the window the instance was vulnerable, rotate credentials for any user accounts that may have been used by the attacker or that created the attacker account. Additionally, review room membership changes and message forwarding logs during the suspected exploitation period for signs of data exfiltration.

If I disable autoTranslate, am I protected from this vulnerability?

Disabling the autoTranslate feature will prevent the vulnerable DDP method from being called, but it does not fix the underlying code flaw. The vulnerability still exists in the codebase. You must upgrade to a patched version for a permanent fix. Disabling autoTranslate is only a temporary mitigation while you prepare to patch.

Can an attacker use this vulnerability to modify or delete messages?

No. This vulnerability enables read-only access. The attacker cannot modify, delete, or send messages using this method. The integrity and availability of messages are not compromised; only confidentiality is affected.

This analysis is based on the published CVE record and Rocket.Chat vendor advisories as of the modification date. Security contexts and risk factors vary by deployment. Organizations should verify patch availability and compatibility with their specific version and environment before deploying updates. This content is for informational purposes and does not constitute legal or compliance advice. Consult your security team and relevant regulatory guidance for your industry. SEC.co does not warrant the accuracy, completeness, or timeliness of this analysis and disclaims liability for decisions made based on this information. Source: NVD (public-domain), retrieved 2026-07-07. Analysis generated by SEC.co (claude-haiku-4-5).

Weaknesses (CWE)

Related vulnerabilities

  • CVE-2025-22426HIGH

    CVE-2025-22426: Android ComputerEngine URI Escalation Privilege Vulnerability

  • CVE-2026-35277HIGH

    CVE-2026-35277: Oracle REST Data Services Authorization Bypass | HIGH CVSS 8.1

  • CVE-2026-37235HIGH

    CVE-2026-37235: FlexRIC E42 Message Authentication Bypass – RIC Denial of Service

  • CVE-2026-40715HIGH

    CVE-2026-40715: Dell ThinOS 10 Privilege Escalation Vulnerability | SEC.co

  • CVE-2024-27891MEDIUM

    CVE-2024-27891: Arista EOS MACsec + Egress ACL Policy Enforcement Failure

  • CVE-2026-10152MEDIUM

    CVE-2026-10152: Improper Access Control in TaleLin lin-cms-spring-boot Book Endpoint

  • CVE-2026-10172MEDIUM

    CVE-2026-10172: Bdtask Multi-Store Inventory 1.0 Unrestricted File Upload Vulnerability

  • CVE-2026-10205MEDIUM

    CVE-2026-10205: Unrestricted File Upload in Metasoft MetaCRM 6.4.0 – Exploit Details & Remediation