Vulnerabilities > Matrix > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-27 | CVE-2023-43656 | Unspecified vulnerability in Matrix Hookshot matrix-hookshot is a Matrix bot for connecting to external services like GitHub, GitLab, JIRA, and more. | 9.0 |
| 2023-08-04 | CVE-2023-38690 | Unspecified vulnerability in Matrix IRC Bridge matrix-appservice-irc is a Node.js IRC bridge for Matrix. | 9.8 |
| 2021-12-14 | CVE-2021-44538 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The olm_session_describe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. | 9.8 |
| 2021-06-16 | CVE-2021-34813 | Out-of-bounds Write vulnerability in Matrix OLM Matrix libolm before 3.2.3 allows a malicious Matrix homeserver to crash a client (while it is attempting to retrieve an Olm encrypted room key backup from the homeserver) because olm_pk_decrypt has a stack-based buffer overflow. | 9.8 |
| 2019-11-08 | CVE-2019-18835 | Insufficient Verification of Data Authenticity vulnerability in Matrix Synapse Matrix Synapse before 1.5.0 mishandles signature checking on some federation APIs. | 9.8 |