What is the CVSS score of CVE-2026-30831?

CVE-2026-30831 has a CVSS 3.1 base score of 9.8 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Rocket.Chat are affected by CVE-2026-30831?

Rocket.Chat deployments are exposed to critical authentication bypass vulnerabilities that allow attackers to circumvent Two-Factor Authentication and access accounts of deactivated users through the…

How to fix or mitigate CVE-2026-30831?

Within 24 hours: Inventory all Rocket.Chat deployments and document versions in use; assess whether DDP Streamer is enabled in production environments. Within 7 days: Implement network-level restrictions to limit DDP Streamer access to trusted networks only; monitor authentication logs for suspicious login patterns, particularly from deactivated accounts. Within 30 days: Upgrade to patched versions (7.10.8, 7.11.5, 7.12.5, 7.13.4, 8.0.2, 8.1.1, or 8.2.0+) as they become available; conduct forensic review of authentication logs for evidence of exploitation.

Rocket.Chat CVE-2026-30831

CRITICAL

Improper Authentication (CWE-287)

2026-03-06 security-advisories@github.com

Authentication Bypass Rocket.Chat

9.8

CVSS 3.1 · GitHub Advisory

Severity by source

GitHub Advisory PRIMARY

9.8 CRITICAL

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 22:06 vuln.today

CVE Published

Mar 06, 2026 - 18:16 nvd

CRITICAL 9.8

DescriptionGitHub Advisory

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to versions 7.10.8, 7.11.5, 7.12.5, 7.13.4, 8.0.2, 8.1.1, and 8.2.0, authentication vulnerabilities exist in Rocket.Chat's enterprise DDP Streamer service. The Account.login method exposed through the DDP Streamer does not enforce Two-Factor Authentication (2FA) or validate user account status (deactivated users can still login), despite these checks being mandatory in the standard Meteor login flow. This issue has been patched in versions 7.10.8, 7.11.5, 7.12.5, 7.13.4, 8.0.2, 8.1.1, and 8.2.0.

AnalysisAI

Auth bypass in Rocket.Chat before 7.10.8+. Second auth bypass CVE.

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Connect to DDP Streamer service

Delivery

Call Account.login method

Exploit

Bypass 2FA validation

Execution

Authenticate as deactivated user

Impact

Gain unauthorized system access

Access

Connect to DDP Streamer service

Delivery

Call Account.login method

Exploit

Bypass 2FA validation

Execution

Authenticate as deactivated user

Impact

Gain unauthorized system access

Vulnerability AssessmentAI

Exploitation	Enterprise DDP Streamer service must be enabled and accessible. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 9.8. Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	Alternative auth bypass.
Remediation	Update. Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all Rocket.Chat deployments and document versions in use; assess whether DDP Streamer is enabled in production environments. …

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2026-30831 vulnerability details – vuln.today

Back

Rocket.Chat CVE-2026-30831

Severity by source

CVSS VectorGitHub Advisory

Lifecycle Timeline

DescriptionGitHub Advisory

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Share

External POC / Exploit Code