Lucene search
GoogleOSV:CVE-2021-40823HistorySep 13, 2021 - 7:15 p.m.
CVE-2021-40823
2021-09-1319:15:19
Google
osv.dev
7
logic error
encryption keys
matrix javascript sdk
A logic error in the room key sharing functionality of matrix-js-sdk (aka Matrix Javascript SDK) before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys (via crafted Matrix protocol messages) that were originally sent by affected Matrix clients participating in that room. This allows the homeserver to decrypt end-to-end encrypted messages sent by affected clients.
Related
osv
osv
alpinelinux
alpinelinux
CVE-2021-40823
2021-09-13 19:15:19
archlinux
archlinux
[ASA-202109-4] element-desktop: information disclosure
2021-09-14 00:00:00
[ASA-202109-5] element-web: information disclosure
2021-09-14 00:00:00
github
github
ubuntucve
ubuntucve
CVE-2021-40823
2021-09-13 00:00:00
cvelist
cvelist
CVE-2021-40823
2021-09-13 18:45:50
prion
prion
Code injection
2021-09-13 19:15:00
debiancve
debiancve
CVE-2021-40823
2021-09-13 19:15:19
nvd
nvd
CVE-2021-40823
2021-09-13 19:15:19
cve
cve
CVE-2021-40823
2021-09-13 19:15:19
nessus
nessus
freebsd
freebsd
Matrix clients -- several vulnerabilities
2021-08-23 00:00:00