Lucene search

K

CVE-2022-39250

πŸ—“οΈΒ 29 Sep 2022Β 13:09:15Reported byΒ GitHub_MTypeΒ 
cve
Β cve
πŸ”—Β web.nvd.nist.govπŸ‘Β 104Β Views🌐 2Β Media mentions

Matrix JavaScript SDK prior to 19.7.0 allows malicious homeserver to interfere with user verification flow, leading to trust of wrong user identity

Show more
Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
Veracode
Authentication Bypass
30 Sep 202206:19
–veracode
RedhatCVE
CVE-2022-39250
17 Oct 202214:18
–redhatcve
Github Security Blog
matrix-js-sdk subject to user impersonation due to key/device identifier confusion in SAS verification
30 Sep 202222:46
–github
AlpineLinux
CVE-2022-39250
29 Sep 202213:15
–alpinelinux
Prion
Cross site scripting
29 Sep 202213:15
–prion
OSV
matrix-js-sdk subject to user impersonation due to key/device identifier confusion in SAS verification
30 Sep 202222:46
–osv
OSV
CVE-2022-39250
29 Sep 202213:15
–osv
OSV
MozillaThunderbird-102.3.1-1.1 on GA media
15 Jun 202400:00
–osv
OSV
element-desktop-1.11.8-1.1 on GA media
15 Jun 202400:00
–osv
OSV
element-web-1.11.8-1.1 on GA media
15 Jun 202400:00
–osv
Rows per page
Nvd
Vulners
Node
matrixjavascript_sdkRange<19.7.0node.js
[
  {
    "vendor": "matrix-org",
    "product": "matrix-js-sdk",
    "versions": [
      {
        "version": "< 19.7.0",
        "status": "affected"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
29 Sep 2022 13:15Current
7.4High risk
Vulners AI Score7.4
CVSS38.6
EPSS0.001
104
.json
Report