matrix-react-sdk is vulnerable to sandbox restrictions bypass. The vulnerability exists due to the redundant lockOrigin parameter from usercontent, allowing an attacker to use the user content sandbox to trick users into opening unexpected documents with a blob
origin.
CPE | Name | Operator | Version |
---|---|---|---|
matrix-react-sdk | le | 3.14.0 |