Lucene search
+L

5 matches found

Circl
Circl
added 2025/01/16 8:15 p.m.5 views

CVE-2024-36402

creationtimestamp| type| source ---|---|--- 2025-01-16 20:15:54+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv3v2laze2f...

5.3CVSS6.8AI score0.00529EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 8:15 p.m.6 views

CVE-2024-36402

Matrix Media Repo MMR is a highly configurable multi-homeserver media repository for Matrix. MMR before version 1.3.5 allows, by design, unauthenticated remote participants to trigger a download and caching of remote media from a remote homeserver to the local media repository. Such content then...

5.3CVSS0.00529EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/16 7:19 p.m.14 views

CVE-2024-36402 Unauthenticated writes to the media repository allow planting of problematic content in Matrix Media Repo

Matrix Media Repo MMR is a highly configurable multi-homeserver media repository for Matrix. MMR before version 1.3.5 allows, by design, unauthenticated remote participants to trigger a download and caching of remote media from a remote homeserver to the local media repository. Such content then...

5.3CVSS0.00529EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/16 7:19 p.m.5 views

CVE-2024-36402 Unauthenticated writes to the media repository allow planting of problematic content in Matrix Media Repo

Matrix Media Repo MMR is a highly configurable multi-homeserver media repository for Matrix. MMR before version 1.3.5 allows, by design, unauthenticated remote participants to trigger a download and caching of remote media from a remote homeserver to the local media repository. Such content then...

5.3CVSS5.8AI score0.00529EPSS
Exploits0References2
CVE
CVE
added 2025/01/16 7:19 p.m.62 views

CVE-2024-36402

CVE-2024-36402 affects Matrix Media Repo (MMR) prior to 1.3.5. Unauthenticated remote participants could trigger remote media download/cache into the local media repo, making content available for unauthenticated download and enabling planting problematic content. The issue is partially mitigated...

5.3CVSS5.4AI score0.00529EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder