CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

NVD•added 2026/02/02 11:16 p.m.•10 views

CVE-2026-24471

continuwuity is a Matrix homeserver written in Rust. This vulnerability allows an attacker with a malicious remote server to cause the local server to sign an arbitrary event upon user interaction. Upon a user account leaving a room rejecting an invite, joining a room or knocking on a room, the...

9.3CVSS0.00312EPSS

Exploits0References2

RedhatCVE•added 2025/10/06 6:14 a.m.•6 views

CVE-2025-49090

The Matrix specification before 1.16 i.e., with a room version before 12 and State Resolution before 2.1 has deficient state resolution...

7.1CVSS6.9AI score0.00421EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-32200

Malicious code in bioql PyPI...

7.1CVSS6.8AI score0.00316EPSS

Exploits0References3

NVD•added 2025/10/02 7:15 p.m.•3 views

CVE-2025-49090

The Matrix specification before 1.16 i.e., with a room version before 12 and State Resolution before 2.1 has deficient state resolution...

7.1CVSS0.00421EPSS

Exploits0References4

NVD•added 2025/10/02 7:15 p.m.•1 views

CVE-2025-54315

The Matrix specification before 1.16 i.e., with a room version before 12 lacks create event uniqueness...

7.1CVSS0.00316EPSS

Exploits0References2

OSV•added 2025/10/02 7:15 p.m.•2 views

CVE-2025-54315

The Matrix specification before 1.16 i.e., with a room version before 12 lacks create event uniqueness...

7.1CVSS6.9AI score

Exploits0References2

Cvelist•added 2025/10/02 12:0 a.m.•8 views

CVE-2025-49090

The Matrix specification before 1.16 i.e., with a room version before 12 and State Resolution before 2.1 has deficient state resolution...

7.1CVSS0.00421EPSS

Exploits0References4

Vulnrichment•added 2025/10/02 12:0 a.m.•1 views

CVE-2025-54315

The Matrix specification before 1.16 i.e., with a room version before 12 lacks create event uniqueness...

7.1CVSS6.5AI score0.00316EPSS

Exploits0References2

Positive Technologies•added 2025/10/02 12:0 a.m.•3 views

PT-2025-40415

Name of the Vulnerable Software and Affected Versions The Matrix specification versions prior to 1.16 Description The Matrix specification, when using a room version before 12, does not ensure uniqueness of create events. Recommendations Update to version 1.16 or later...

7.1CVSS6.8AI score0.00316EPSS

Exploits0References5

Cvelist•added 2025/10/02 12:0 a.m.•8 views

CVE-2025-54315

The Matrix specification before 1.16 i.e., with a room version before 12 lacks create event uniqueness...

7.1CVSS0.00316EPSS

Exploits0References2

AlpineLinux•added 2025/10/02 12:0 a.m.•8 views

CVE-2025-49090

The Matrix specification before 1.16 i.e., with a room version before 12 and State Resolution before 2.1 has deficient state resolution...

7.1CVSS7.2AI score0.00421EPSS

Exploits0

CVE•added 2025/10/02 12:0 a.m.•24 views

CVE-2025-49090

The CVE-2025-49090 entry concerns the Matrix specification prior to 1.16, specifically room version before 12 and State Resolution before 2.1, which is reported to have deficient state resolution. The issue is documented across multiple feeds (RH, OSV, NVD, CVE list, Alpine, etc.) with linked adv...

7.1CVSS6.8AI score0.00421EPSS

Exploits0References4

Vulnrichment•added 2025/10/02 12:0 a.m.•0 views

CVE-2025-49090

The Matrix specification before 1.16 i.e., with a room version before 12 and State Resolution before 2.1 has deficient state resolution...

7.1CVSS6.6AI score0.00421EPSS

Exploits0References4