Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:40186
HistoryApr 19, 2023 - 10:17 a.m.

Missing Authorization

2023-04-1910:17:21
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
matrix-js-sdk
missing authorization
invisible eavesdropping
group calls

0.001 Low

EPSS

Percentile

40.1%

JSON

matrix-js-sdk is vulnerable to Missing Authorization. The vulnerability exists because a user can join a MSC3401 group call without notifying other users, which allows an attacker to perform invisible eavesdropping in group calls.

CPENameOperatorVersion
matrix-js-sdkle24.0.0
matrix-js-sdkle24.0.0

Related

osv 2
nvd 1
cvelist 1
cve 1
ubuntucve 1
prion 1
github 1
osv
osv
matrix-js-sdk vulnerable to invisible eavesdropping in group calls
2023-04-14 16:14:17
CVE-2023-29529
2023-04-14 19:15:09
nvd
nvd
CVE-2023-29529
2023-04-14 19:15:09
cvelist
cvelist
CVE-2023-29529 matrix-js-sdk vulnerable to invisible eavesdropping in group calls
2023-04-14 18:21:17
cve
cve
CVE-2023-29529
2023-04-14 19:15:09
ubuntucve
ubuntucve
CVE-2023-29529
2023-04-14 00:00:00
prion
prion
Race condition
2023-04-14 19:15:00
github
github
matrix-js-sdk vulnerable to invisible eavesdropping in group calls
2023-04-14 16:14:17

0.001 Low

EPSS

Percentile

40.1%

JSON
Related for VERACODE:40186
osv2nvd1cvelist1cve1ubuntucve1prion1github1