A vulnerability described as problematic has been identified in RocketChat Rocket.Chat up to 8.4.x . Impacted is an unknown function of the component SP Logout Endpoint . Such manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2026-45677 . The attack can be launched remotely. No exploit exists. Upgrading the affected component is recommended.