Vulnerabilities > Matrix > High

DATE CVE VULNERABILITY TITLE RISK
2023-03-28 CVE-2023-28427 Unspecified vulnerability in Matrix Javascript SDK
matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript.
network
low complexity
matrix
8.2
8.2
2022-09-29 CVE-2022-39252 Key Exchange without Entity Authentication vulnerability in Matrix Matrix-Rust-Sdk
matrix-rust-sdk is an implementation of a Matrix client-server library in Rust, and matrix-sdk-crypto is the Matrix encryption library.
network
low complexity
matrix CWE-322
7.5
7.5
2022-09-29 CVE-2022-39250 Improper Authentication vulnerability in Matrix Javascript SDK
Matrix JavaScript SDK is the Matrix Client-Server software development kit (SDK) for JavaScript.
network
low complexity
matrix CWE-287
7.5
7.5
2022-09-28 CVE-2022-39255 Improper Authentication vulnerability in Matrix Software Development KIT
Matrix iOS SDK allows developers to build iOS apps compatible with Matrix.
network
low complexity
matrix CWE-287
7.5
7.5
2022-09-28 CVE-2022-39257 Improper Authentication vulnerability in Matrix Software Development KIT
Matrix iOS SDK allows developers to build iOS apps compatible with Matrix.
network
low complexity
matrix CWE-287
7.5
7.5
2022-09-28 CVE-2022-39248 Key Exchange without Entity Authentication vulnerability in Matrix Software Development KIT
matrix-android-sdk2 is the Matrix SDK for Android.
network
low complexity
matrix CWE-322
7.5
7.5
2022-09-28 CVE-2022-39249 Improper Authentication vulnerability in Matrix Javascript SDK
Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript.
network
low complexity
matrix CWE-287
7.5
7.5
2022-09-28 CVE-2022-39251 Improper Authentication vulnerability in Matrix Javascript SDK
Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript.
network
low complexity
matrix CWE-287
7.5
7.5
2021-11-23 CVE-2021-41281 Path Traversal vulnerability in multiple products
Synapse is a package for Matrix homeservers written in Python 3/Twisted.
network
low complexity
matrix fedoraproject CWE-22
7.5
7.5
2021-06-16 CVE-2021-34813 Out-of-bounds Write vulnerability in Matrix OLM
Matrix libolm before 3.2.3 allows a malicious Matrix homeserver to crash a client (while it is attempting to retrieve an Olm encrypted room key backup from the homeserver) because olm_pk_decrypt has a stack-based buffer overflow.
network
low complexity
matrix CWE-787
7.5
7.5