Vulnerabilities > Matrix > Javascript SDK
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-14 | CVE-2023-29529 | Unspecified vulnerability in Matrix Javascript SDK matrix-js-sdk is the Matrix Client-Server SDK for JavaScript and TypeScript. | 5.3 |
| 2023-03-28 | CVE-2023-28427 | Unspecified vulnerability in Matrix Javascript SDK matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. | 8.2 |
| 2022-09-29 | CVE-2022-39250 | Improper Authentication vulnerability in Matrix Javascript SDK Matrix JavaScript SDK is the Matrix Client-Server software development kit (SDK) for JavaScript. | 7.5 |
| 2022-09-28 | CVE-2022-39249 | Improper Authentication vulnerability in Matrix Javascript SDK Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. | 7.5 |
| 2022-09-28 | CVE-2022-39251 | Improper Authentication vulnerability in Matrix Javascript SDK Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. | 7.5 |
| 2022-09-28 | CVE-2022-39236 | Unspecified vulnerability in Matrix Javascript SDK Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. | 5.3 |
| 2021-12-14 | CVE-2021-44538 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The olm_session_describe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. | 9.8 |
| 2021-09-13 | CVE-2021-40823 | Authentication Bypass by Spoofing vulnerability in Matrix Javascript SDK A logic error in the room key sharing functionality of matrix-js-sdk (aka Matrix Javascript SDK) before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys (via crafted Matrix protocol messages) that were originally sent by affected Matrix clients participating in that room. | 5.9 |