Lucene search
+L

4 matches found

nvd
nvd
added 2024/07/18 5:15 p.m.41 views

CVE-2024-40648

matrix-rust-sdk is an implementation of a Matrix client-server library in Rust. The UserIdentity::isverified method in the matrix-sdk-crypto crate before version 0.7.2 doesn't take into account the verification status of the user's own identity while performing the check and may as a result retur...

5.4CVSS0.0028EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2024/07/18 4:45 p.m.12 views

CVE-2024-40648 `UserIdentity::is_verified` not checking verification status of own user identity while performing the check in matrix-rust-sdk

matrix-rust-sdk is an implementation of a Matrix client-server library in Rust. The UserIdentity::isverified method in the matrix-sdk-crypto crate before version 0.7.2 doesn't take into account the verification status of the user's own identity while performing the check and may as a result retur...

5.4CVSS6.6AI score0.0028EPSS
Exploits0References2
cvelist
cvelist
added 2024/07/18 4:45 p.m.41 views

CVE-2024-40648 `UserIdentity::is_verified` not checking verification status of own user identity while performing the check in matrix-rust-sdk

matrix-rust-sdk is an implementation of a Matrix client-server library in Rust. The UserIdentity::isverified method in the matrix-sdk-crypto crate before version 0.7.2 doesn't take into account the verification status of the user's own identity while performing the check and may as a result retur...

5.4CVSS0.0028EPSS
Exploits0References2
vulnersosv
vulnersosv
added 2024/07/18 3:28 p.m.10 views

alerter (>=0.3.0 <=0.3.1), maruc (=0.1.0) +9 more potentially affected by CVE-2024-40648 via matrix-sdk-crypto (>=0.1.0 <=0.5.0)

matrix-sdk-crypto CARGO version =0.1.0, =0.3.0, =0.1.0, =0.1.0, =0.2.0, =0.1.0, =0.1.10-alpha, =0.13.0, =0.13.1 Source cves: CVE-2024-40648 Source advisory: OSV:GHSA-4QG4-CVH2-CRGG...

5.4CVSS5.8AI score0.0028EPSS
Exploits0
Rows per page
Query Builder