Matrix Javascript SDK allows attackers to construct messages appearing to come from someone else due to a too permissive key forwarding strategy, fixed in version 19.7.0
Reporter | Title | Published | Views | Family All 73 |
---|---|---|---|---|
Prion | Design/Logic Flaw | 28 Sep 202220:15 | – | prion |
OSV | CVE-2022-39249 | 28 Sep 202220:15 | – | osv |
OSV | matrix-js-sdk subject to impersonated messages due to permissive key forwarding | 30 Sep 202200:40 | – | osv |
OSV | Important: thunderbird security update | 25 Oct 202200:00 | – | osv |
OSV | Red Hat Security Advisory: thunderbird security update | 16 Sep 202409:22 | – | osv |
OSV | Red Hat Security Advisory: thunderbird security update | 16 Sep 202409:22 | – | osv |
OSV | Important: thunderbird security update | 25 Oct 202200:00 | – | osv |
OSV | Red Hat Security Advisory: thunderbird security update | 16 Sep 202409:22 | – | osv |
OSV | Red Hat Security Advisory: thunderbird security update | 16 Sep 202409:22 | – | osv |
OSV | Red Hat Security Advisory: thunderbird security update | 16 Sep 202409:22 | – | osv |
[
{
"vendor": "matrix-org",
"product": "matrix-js-sdk",
"versions": [
{
"version": "< 19.7.0",
"status": "affected"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo