Lucene search

Matrix-Appservice-Bridge Security Vulnerabilities - 2023

cve

CVE-2023-38691

matrix-appservice-bridge provides an API for setting up bridges. Starting in version 4.0.0 and prior to versions 8.1.2 and 9.0.1, a malicious Matrix server can use a foreign user's MXID in an OpenID exchange, allowing a bad actor to impersonate users when using the provisioning API. The library doe...

6.5CVSS

6.3AI Score

0.001EPSS

2023-08-04 05:15 PM

2465