CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-1248

Malware in sbrugna...

6.5CVSS5.4AI score0.00268EPSS

Exploits0References7

UbuntuCve•added 2022/09/28 10:15 p.m.•38 views

CVE-2022-39264

nheko is a desktop client for the Matrix communication application. All versions below 0.10.2 are vulnerable homeservers inserting malicious secrets, which could lead to man-in-the-middle attacks. Users can upgrade to version 0.10.2 to protect against this issue. As a workaround, one may apply th...

8.6CVSS6.8AI score0.00381EPSS

Exploits0References4

Prion•added 2022/09/28 10:15 p.m.•17 views

Cross site request forgery (csrf)

2.6CVSS5.5AI score0.00381EPSS

Exploits0References5Affected Software2

AlpineLinux•added 2022/09/28 12:0 a.m.•44 views

CVE-2022-39264

8.6CVSS6AI score0.00381EPSS

Exploits0

CVE•added 2022/09/28 12:0 a.m.•78 views

CVE-2022-39264

CVE-2022-39264 affects the nheko desktop client for Matrix; all releases prior to 0.10.2 are vulnerable because homeservers can insert malicious secrets, enabling potential man‑in‑the‑middle attacks. The recommended fix is upgrading to v0.10.2. Workarounds mentioned include applying patches manua...

8.6CVSS6.2AI score0.00381EPSS

Exploits0References5Affected Software1

NVD•added 2021/06/16 7:15 p.m.•7 views

CVE-2021-32659

Matrix-appservice-bridge is the bridging service for the Matrix communication program's application services. In versions 2.6.0 and earlier, if a bridge has room upgrade handling turned on in the configuration the roomUpgradeOpts key when instantiating a new Bridge instance., any m.room.tombstone...

6.5CVSS0.00268EPSS

Exploits0References3

Prion•added 2021/06/16 7:15 p.m.•16 views

Design/Logic Flaw

3.5CVSS5AI score0.00268EPSS

Exploits0References3Affected Software1