Lucene search
K

131 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-4389

Malicious code in bioql PyPI...

5.9CVSS5.8AI score0.00662EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.22 views

EUVD-2025-21024

Malicious code in bioql PyPI...

7.7CVSS6.3AI score0.00254EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-1554

Malicious code in bioql PyPI...

5.5CVSS6.4AI score0.00193EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-41768

Malicious code in bioql PyPI...

8.6CVSS7.8AI score0.00753EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28979

Malicious code in bioql PyPI...

6.9CVSS6.3AI score0.00374EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/09/18 4:40 p.m.4 views

CVE-2025-59160

Matrix JavaScript SDK is a Matrix Client-Server SDK for JavaScript and TypeScript. matrix-js-sdk before 38.2.0 has insufficient validation of room predecessor links in MatrixClient::getJoinedRooms, allowing a remote attacker to attempt to replace a tombstoned room with an unrelated...

6.9CVSS6.6AI score0.00227EPSS
Exploits0References1
OSV
OSV
added 2025/09/16 4:37 p.m.6 views

CVE-2025-59160 matrix-js-sdk has insufficient validation when considering a room to be upgraded by another

Matrix JavaScript SDK is a Matrix Client-Server SDK for JavaScript and TypeScript. matrix-js-sdk before 38.2.0 has insufficient validation of room predecessor links in MatrixClient::getJoinedRooms, allowing a remote attacker to attempt to replace a tombstoned room with an unrelated...

6.9CVSS6.5AI score0.00227EPSS
Exploits0References4
OSV
OSV
added 2025/09/11 9:23 p.m.4 views

GHSA-QHJ8-Q5R6-8Q6J matrix-sdk-base: Panic in the `RoomMember::normalized_power_level()` method

In matrix-sdk-base before 0.14.1, calling the RoomMember::normalizedpowerlevel method can cause a panic if a room member has a power level of Int::Min. Patches The issue is fixed in matrix-sdk-base 0.14.1. Workarounds The affected method isn’t used internally, so avoiding calling...

6.9CVSS6.8AI score0.00374EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2025/09/11 9:23 p.m.7 views

matrix-sdk-base: Panic in the `RoomMember::normalized_power_level()` method

In matrix-sdk-base before 0.14.1, calling the RoomMember::normalizedpowerlevel method can cause a panic if a room member has a power level of Int::Min. Patches The issue is fixed in matrix-sdk-base 0.14.1. Workarounds The affected method isn’t used internally, so avoiding calling...

6.9CVSS6.8AI score0.00374EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2025/09/11 6:15 p.m.6 views

CVE-2025-59047

matrix-sdk-base is the base component to build a Matrix client library. In matrix-sdk-base before 0.14.1, calling the RoomMember::normalizedpowerlevel method can cause a panic if a room member has a power level of Int::Min. The issue is fixed in matrix-sdk-base 0.14.1. The affected method isn’t...

6.9CVSS0.00374EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/09/11 6:3 p.m.2 views

CVE-2025-59047 matrix-sdk-base has panic in the `RoomMember::normalized_power_level()` method

matrix-sdk-base is the base component to build a Matrix client library. In matrix-sdk-base before 0.14.1, calling the RoomMember::normalizedpowerlevel method can cause a panic if a room member has a power level of Int::Min. The issue is fixed in matrix-sdk-base 0.14.1. The affected method isn’t...

6.9CVSS6.4AI score0.00374EPSS
Exploits0References4
CVE
CVE
added 2025/09/11 6:3 p.m.21 views

CVE-2025-59047

matrix-sdk-base (pre-0.14.1) has a panic in RoomMember::normalized_power_level() when a member’s power level is Int::Min. The issue is fixed in matrix-sdk-base 0.14.1. The affected method isn’t used internally, so avoiding calls to RoomMember::normalized_power_level() can prevent the panic; upgra...

6.9CVSS6.4AI score0.00374EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/11 6:3 p.m.11 views

CVE-2025-59047 matrix-sdk-base has panic in the `RoomMember::normalized_power_level()` method

matrix-sdk-base is the base component to build a Matrix client library. In matrix-sdk-base before 0.14.1, calling the RoomMember::normalizedpowerlevel method can cause a panic if a room member has a power level of Int::Min. The issue is fixed in matrix-sdk-base 0.14.1. The affected method isn’t...

6.9CVSS0.00374EPSS
Exploits0References4
OSV
OSV
added 2025/09/11 12:0 p.m.5 views

RUSTSEC-2025-0065 matrix-sdk-base: Panic in the `RoomMember::normalized_power_level()` method

In matrix-sdk-base before 0.14.1, calling the RoomMember::normalizedpowerlevel method can cause a panic if a room member has a power level of Int::Min...

6.9CVSS6.9AI score0.00374EPSS
Exploits0References3
OSV
OSV
added 2025/09/11 12:0 p.m.6 views

RUSTSEC-2025-0000 matrix-sdk-base: Panic in the `RoomMember::normalized_power_level()` method

In matrix-sdk-base before 0.14.1, calling the RoomMember::normalizedpowerlevel method can cause a panic if a room member has a power level of Int::Min...

6.9CVSS6.9AI score0.00374EPSS
Exploits0References3
RustSec
RustSec
added 2025/09/11 12:0 p.m.5 views

matrix-sdk-base: Panic in the `RoomMember::normalized_power_level()` method

In matrix-sdk-base before 0.14.1, calling the RoomMember::normalizedpowerlevel method can cause a panic if a room member has a power level of Int::Min...

6.9CVSS6.9AI score0.00374EPSS
Exploits0Affected Software1
RustSec
RustSec
added 2025/09/11 12:0 p.m.6 views

matrix-sdk-base: Panic in the `RoomMember::normalized_power_level()` method

In matrix-sdk-base before 0.14.1, calling the RoomMember::normalizedpowerlevel method can cause a panic if a room member has a power level of Int::Min...

6.9CVSS6.9AI score0.00374EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/11 12:0 a.m.3 views

PT-2025-37250

Name of the Vulnerable Software and Affected Versions: matrix-sdk-base versions prior to 0.14.1 Description: A panic can occur when calling the RoomMember::normalized power level method if a room member has a power level of Int::Min. Recommendations: Update to version 0.14.1 or later...

6.9CVSS6.5AI score0.00374EPSS
Exploits0References15
OSV
OSV
added 2025/07/10 5:41 p.m.5 views

GHSA-275G-G844-73JH Matrix Rust SDK vulnerable to SQL Injection through its EventCache implementation

An SQL injection vulnerability in the EventCache::findeventwithrelations method of matrix-sdk 0.11 and 0.12 allows malicious room members to execute arbitrary SQL commands in Matrix clients that directly pass relation types provided by those room members into this method, when used with the defau...

7.7CVSS8.6AI score0.00254EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2025/07/10 5:41 p.m.11 views

Matrix Rust SDK vulnerable to SQL Injection through its EventCache implementation

An SQL injection vulnerability in the EventCache::findeventwithrelations method of matrix-sdk 0.11 and 0.12 allows malicious room members to execute arbitrary SQL commands in Matrix clients that directly pass relation types provided by those room members into this method, when used with the defau...

7.7CVSS8.6AI score0.00254EPSS
Exploits0References6Affected Software2
Rows per page
Query Builder