Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.22 views

EUVD-2021-1944

Malware in sbrugna...

5.9CVSS5.7AI score0.00641EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-4389

Malicious code in bioql PyPI...

5.9CVSS5.8AI score0.00641EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-40823

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic error in the room key sharing functionality of matrix-js-sdk aka Matrix Javascript SDK before 12.4.1 allows a malicious Matrix homeserver present in an...

5.9CVSS5.9AI score0.00641EPSS
Exploits0References3
OSV
OSV
added 2022/05/24 7:14 p.m.14 views

GHSA-JJMC-4P83-PP26 Logic error in Matrix SDK for Android

A logic error in the room key sharing functionality of Element Android before 1.2.2 and matrix-android-sdk2 aka Matrix SDK for Android before 1.2.2 leads to a situation where identity verification is inadequate and thus a key-requesting device can be impersonated...

5.9CVSS5.5AI score0.00641EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/05/24 7:14 p.m.19 views

Logic error in Matrix SDK for Android

A logic error in the room key sharing functionality of Element Android before 1.2.2 and matrix-android-sdk2 aka Matrix SDK for Android before 1.2.2 leads to a situation where identity verification is inadequate and thus a key-requesting device can be impersonated...

5.9CVSS6.8AI score0.00641EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2021/09/14 8:24 p.m.54 views

matrix-js-sdk can be tricked into disclosing E2EE room keys to a participating homeserver

Impact A logic error in the room key sharing functionality of matrix-js-sdk before 12.4.1 allows a malicious Matrix homeserver† participating in an encrypted room to steal room encryption keys from affected Matrix clients participating in that room. This allows the homeserver to decrypt end-to-en...

5.9CVSS0.1AI score0.00641EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2021/09/13 7:15 p.m.26 views

CVE-2021-40824

A logic error in the room key sharing functionality of Element Android before 1.2.2 and matrix-android-sdk2 aka Matrix SDK for Android before 1.2.2 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were...

5.9CVSS0.00641EPSS
Exploits0References2
OSV
OSV
added 2021/09/13 7:15 p.m.1 views

DEBIAN-CVE-2021-40823

A logic error in the room key sharing functionality of matrix-js-sdk aka Matrix Javascript SDK before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were originally sent by affected Matrix clients...

5.9CVSS5.8AI score0.00641EPSS
Exploits0References1
OSV
OSV
added 2021/09/13 7:15 p.m.23 views

CVE-2021-40824

A logic error in the room key sharing functionality of Element Android before 1.2.2 and matrix-android-sdk2 aka Matrix SDK for Android before 1.2.2 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were...

5.9CVSS6.5AI score
Exploits0References2
Prion
Prion
added 2021/09/13 7:15 p.m.19 views

Code injection

A logic error in the room key sharing functionality of matrix-js-sdk aka Matrix Javascript SDK before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were originally sent by affected Matrix clients...

4.3CVSS5.5AI score0.00641EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/09/13 7:15 p.m.19 views

Code injection

A logic error in the room key sharing functionality of Element Android before 1.2.2 and matrix-android-sdk2 aka Matrix SDK for Android before 1.2.2 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were...

4.3CVSS5.6AI score0.00641EPSS
Exploits0References2Affected Software2
UbuntuCve
UbuntuCve
added 2021/09/13 7:15 p.m.24 views

CVE-2021-40823

A logic error in the room key sharing functionality of matrix-js-sdk aka Matrix Javascript SDK before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were originally sent by affected Matrix clients...

5.9CVSS6.2AI score0.00641EPSS
Exploits0References5
OSV
OSV
added 2021/09/13 7:15 p.m.3 views

UBUNTU-CVE-2021-40823

A logic error in the room key sharing functionality of matrix-js-sdk aka Matrix Javascript SDK before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were originally sent by affected Matrix clients...

5.9CVSS6.2AI score0.00641EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2021/09/13 6:49 p.m.43 views

CVE-2021-40824

A logic error in the room key sharing functionality of Element Android before 1.2.2 and matrix-android-sdk2 aka Matrix SDK for Android before 1.2.2 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were...

5.9CVSS5.5AI score0.00641EPSS
Exploits0
CVE
CVE
added 2021/09/13 6:45 p.m.110 views

CVE-2021-40823

CVE-2021-40823 affects matrix-js-sdk and related Element client variants. A logic error in the room key sharing functionality prior to version 12.4.1 allows a malicious Matrix homeserver participating in an encrypted room to steal room encryption keys originally sent by affected clients, enabling...

5.9CVSS5.4AI score0.00641EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/09/13 6:45 p.m.41 views

CVE-2021-40823

A logic error in the room key sharing functionality of matrix-js-sdk aka Matrix Javascript SDK before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were originally sent by affected Matrix clients...

5.8AI score0.00641EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2021/09/13 6:45 p.m.14 views

CVE-2021-40823

A logic error in the room key sharing functionality of matrix-js-sdk aka Matrix Javascript SDK before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were originally sent by affected Matrix clients...

5.9CVSS5.5AI score0.00641EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/09/13 6:45 p.m.49 views

CVE-2021-40823

A logic error in the room key sharing functionality of matrix-js-sdk aka Matrix Javascript SDK before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys via crafted Matrix protocol messages that were originally sent by affected Matrix clients...

5.9CVSS5.5AI score0.00641EPSS
Exploits0
CNNVD
CNNVD
added 2021/09/13 12:0 a.m.22 views

Matrix 加密问题漏洞

Matrix is an ambitious new ecosystem for open federated instant messaging and VoIP. A cryptographic issue vulnerability exists in versions of Matrix Javascript SDK prior to 12.4.1, which stems from a logic error in a device's room key sharing functionality that results in insufficient...

5.9CVSS5.9AI score0.00641EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/09/13 12:0 a.m.6 views

Element Android 加密问题漏洞

Element Android is the Android Matrix client provided by Element. A cryptographic issue vulnerability exists in Element Android prior to version 1.2.2 and matrix-android-sdk2 prior to version 1.2.2, which stems from a logic error in the device's room key sharing functionality that results in...

5.9CVSS5.9AI score0.00641EPSS
Exploits0References4
Rows per page
Query Builder