User content sandbox can be confused into opening arbitrary documents
CVE-2021-21320

2.6LOW

Key Information:

Vendor: Matrix-org
Status: Matrix-react-sdk
Vendor: CVE Published:; 2 March 2021

What is CVE-2021-21320?

matrix-react-sdk is an npm package which is a Matrix SDK for React Javascript. In matrix-react-sdk before version 3.15.0, the user content sandbox can be abused to trick users into opening unexpected documents. The content is opened with a blob origin that cannot access Matrix user data, so messages and secrets are not at risk. This has been fixed in version 3.15.0.

Affected Version(s)

matrix-react-sdk < 3.15.0

References

https://github.com/matrix-org/matrix-react-sdk/security/a...

x_refsource_CONFIRM

https://github.com/matrix-org/matrix-react-sdk/pull/5657

x_refsource_MISC

https://github.com/matrix-org/matrix-react-sdk/commit/b38...

x_refsource_MISC

CVSS V3.1

Score:

2.6

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 2, 2021
Vulnerability Reserved
Dec 22, 2020

Matrix-org

What is CVE-2021-21320?

Affected Version(s)

References

CVSS V3.1

Timeline