Vulners
Lucene search
Linux Distros Unpatched Vulnerability : CVE-2024-47080
| Reporter | Title | Published | Views | Family All 16 |
|---|---|---|---|---|
 | CVE-2024-47080 | 15 Oct 202417:46 | – | circl |
 | matrix-js-sdk 信息泄露漏洞 | 15 Oct 202400:00 | – | cnnvd |
 | CVE-2024-47080 | 15 Oct 202414:53 | – | cve |
 | CVE-2024-47080 matrix-js-sdk keys sent via `sendSharedHistoryKeys` vulnerable to interception by malicious homeserver | 15 Oct 202414:53 | – | cvelist |
 | CVE-2024-47080 | 15 Oct 202414:53 | – | debiancve |
 | EUVD-2024-2936 | 3 Oct 202520:07 | – | euvd |
 | Matrix JavaScript SDK's key history sharing could share keys to malicious devices | 15 Oct 202418:07 | – | github |
 | CVE-2024-47080 | 15 Oct 202415:15 | – | nvd |
 | CVE-2024-47080 matrix-js-sdk keys sent via `sendSharedHistoryKeys` vulnerable to interception by malicious homeserver | 15 Oct 202414:53 | – | osv |
| DEBIAN-CVE-2024-47080 | 15 Oct 202415:15 | – | osv |
10
| Source | Link |
|---|---|
| security-tracker | www.security-tracker.debian.org/tracker/CVE-2024-47080 |
| ubuntu | www.ubuntu.com/security/CVE-2024-47080 |
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(229396);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2026/04/29");
script_cve_id("CVE-2024-47080");
script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2024-47080");
script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.
- matrix-js-sdk is the Matrix Client-Server SDK for JavaScript and TypeScript. In matrix-js-sdk versions
versions 9.11.0 through 34.7.0, the method `MatrixClient.sendSharedHistoryKeys` is vulnerable to
interception by malicious homeservers. The method was introduced by MSC3061) and is commonly used to share
historical message keys with newly invited users, granting them access to past messages in the room.
However, it unconditionally sends these shared keys to all of the invited user's devices, regardless of
whether the user's cryptographic identity is verified or whether the user's devices are signed by that
identity. This allows the attacker to potentially inject its own devices to receive sensitive historical
keys without proper security checks. Note that this only affects clients running the SDK with the legacy
crypto stack. Clients using the new Rust cryptography stack (i.e. those that call
`MatrixClient.initRustCrypto()` instead of `MatrixClient.initCrypto()`) are unaffected by this
vulnerability, because `MatrixClient.sendSharedHistoryKeys()` raises an exception in such environments.
The vulnerability was fixed in matrix-js-sdk 34.8.0 by removing the vulnerable functionality. As a
workaround, remove use of affected functionality from clients. (CVE-2024-47080)
Note that Nessus relies on the presence of the package as reported by the vendor.");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2024-47080");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2024-47080");
script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
script_set_attribute(attribute:"agent", value:"unix");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
script_set_attribute(attribute:"cvss4_vector", value:"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N");
script_set_attribute(attribute:"cvss4_threat_vector", value:"CVSS:4.0/E:U");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-47080");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vendor_unpatched", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/10/15");
script_set_attribute(attribute:"plugin_publication_date", value:"2025/03/05");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:11.0");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:node-matrix-js-sdk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:node-matrix-js-sdk");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2025-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("set_linux_os_id.nasl", "ssh_get_info2.nasl");
script_require_keys("Host/OS/identifier", "Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched");
script_require_ports("Host/OS/Debian Linux-11", "Host/OS/Ubuntu Linux-20.04", "Host/OS/Ubuntu Linux-22.04", "Host/OS/Ubuntu Linux-24.04");
exit(0);
}
if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);
include('linux_unpatched.inc');
var distro_constraints_array = {
"Debian Linux-11": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "11",
"pkgs": [
{"reference": "libjs-matrix-js-sdk"},
{"reference": "node-matrix-js-sdk"}
]
}
]
},
"Ubuntu Linux-20.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "20.04",
"pkgs": [
{"reference": "node-matrix-js-sdk"}
]
}
]
},
"Ubuntu Linux-22.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "22.04",
"pkgs": [
{"reference": "node-matrix-js-sdk"}
]
}
]
},
"Ubuntu Linux-24.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "24.04",
"pkgs": [
{"reference": "node-matrix-js-sdk"}
]
}
]
}
};
var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);
if (!empty_or_null(report))
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : report
);
exit(0);
}
else
{
audit(AUDIT_HOST_NOT, 'affected');
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
29 Apr 2026 00:00Current
5.6Medium risk
Vulners AI Score5.6
CVSS 48.7
EPSS0.0058
SSVC