Lucene search
China National Vulnerability DatabaseCNVD-2021-70124HistorySep 02, 2021 - 12:00 a.m.
Matrix Information Breach Vulnerability
2021-09-0200:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
matrix
information disclosure
authentication
access privileges
attacker
sensitive information
EPSS
0.001
Percentile
35.6%
Matrix is an ambitious new ecosystem for open federated instant messaging and VoIP. Matrix suffers from an information disclosure vulnerability that stems from the product not doing valid authentication of access user privileges. An attacker could access members’ sensitive information via another room’s ID.
Related
veracode
veracode
Privilege Escalation
2021-09-01 07:35:38
nvd
nvd
CVE-2021-39164
2021-08-31 17:15:08
prion
prion
Code injection
2021-08-31 17:15:00
osv
osv
CVE-2021-39164
2021-08-31 17:15:08
Improper authorisation of members discloses room membership to non-members
2021-09-01 18:25:27
PYSEC-2021-425
2021-08-31 17:15:00
github
github
Improper authorisation of members discloses room membership to non-members
2021-09-01 18:25:27
debiancve
debiancve
CVE-2021-39164
2021-08-31 17:15:08
alpinelinux
alpinelinux
CVE-2021-39164
2021-08-31 17:15:08
ubuntucve
ubuntucve
CVE-2021-39164
2021-08-31 00:00:00
cvelist
cvelist
cve
cve
CVE-2021-39164
2021-08-31 17:15:08
nessus
nessus
fedora
fedora
[SECURITY] Fedora 34 Update: matrix-synapse-1.41.1-1.fc34
2021-09-08 15:07:22
[SECURITY] Fedora 35 Update: matrix-synapse-1.41.1-1.fc35
2021-09-24 20:41:56
openvas
openvas
Fedora: Security Advisory for matrix-synapse (FEDORA-2021-2e8ed15b14)
2021-09-09 00:00:00
Fedora: Security Advisory for matrix-synapse (FEDORA-2021-f12fdca1bf)
2021-10-02 00:00:00
freebsd
freebsd
py-matrix-synapse -- several vulnerabilities
2021-08-31 00:00:00