matrix Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by matrix
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Moderation Tool Vulnerability in Mjolnir by Matrix
CVE-2025-24024Matrix-orgMjolnir9.1CRITICALUnauthorized Access Vulnerability in Matrix Door Controller Cosec Vega FAXQ
CVE-2024-10381Matrix ComsecMatrix Door Controller...9.8CRITICALFile Name or Extension of Externally-Supplied File Vulnerabilities
CVE-2024-38432MatrixTafnit V89.8CRITICALVisible Data Discrepancies in Matrix Tafnit v8
CVE-2024-38431MatrixTafnit V87.5HIGHExternal Parties Can Access Files or Directories Without Authorization
CVE-2024-38429MatrixTafnit V87.5HIGHSydent does not verify email server certificates
CVE-2023-38686Matrix-orgSydent9.3CRITICALPrototype pollution in matrix-react-sdk
CVE-2023-28103Matrix-orgMatrix-react-sdk8.2HIGHPrototype pollution in matrix-js-sdk
CVE-2023-28427Matrix-orgMatrix-js-sdk8.2HIGHPrototype pollution in matrix-react-sdk
CVE-2022-36060Matrix-orgMatrix-react-sdk8.2HIGHPrototype pollution in matrix-js-sdk
CVE-2022-36059Matrix-orgMatrix-js-sdk8.2HIGHWhen matrix-rust-sdk recieves forwarded room keys, the reciever doesn't check if it requested the key from the forwarder
CVE-2022-39252Matrix-orgMatrix-rust-sdk8.6HIGHMatrix JavaScript SDK vulnerable to key/device identifier confusion in SAS verification
CVE-2022-39250Matrix-orgMatrix-js-sdk8.6HIGHMatrix iOS SDK vulnerable to impersonation via forwarded Megolm sessions
CVE-2022-39257Matrix-orgMatrix-iOS-sdk7.5HIGHMatrix iOS SDK vulnerable ton Olm/Megolm protocol confusion
CVE-2022-39255Matrix-orgMatrix-iOS-sdk8.6HIGHmatrix-android-sdk2 vulnerable to Olm/Megolm protocol confusion
CVE-2022-39248Matrix-orgMatrix-android-sdk28.6HIGHmatrix-android-sdk2 vulnerable to impersonation via forwarded Megolm sessions
CVE-2022-39246Matrix-orgMatrix-android-sdk27.5HIGHMatrix Javascript SDK vulnerable to impersonation via forwarded Megolm sessions
CVE-2022-39249Matrix-orgMatrix-js-sdk7.5HIGHMatrix Javascript SDK vulnerable to Olm/Megolm protocol confusion
CVE-2022-39251Matrix-orgMatrix-js-sdk8.6HIGHParsing issue in matrix-org/node-irc leading to room takeovers
CVE-2022-39203Matrix-orgMatrix-appservice-irc8.8HIGHSignature checks not applied to some retrieved missing events
CVE-2022-39200Matrix-orgDendrite7.3HIGHImproper handling of multiline messages in matrix-appservice-irc
CVE-2022-29166Matrix-orgMatrix-appservice-irc8HIGHBuffer Overflow Vulnerability in Matrix libolm Affects Element Web and SchildiChat Web
CVE-2021-44538MatrixElement9.8CRITICALPath traversal in Matrix Synapse
CVE-2021-41281Matrix-orgSynapse7.5HIGHBuffer Overflow Vulnerability in Matrix libolm Affects Client Operations
CVE-2021-34813MatrixOlm9.8CRITICALSSRF in Sydent due to missing validation of hostnames
CVE-2021-29431Matrix-orgSydent7.7HIGH