Vulnerabilities > Matrix > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-26 | CVE-2022-39374 | Resource Exhaustion vulnerability in Matrix Synapse Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. | 6.5 |
| 2023-05-26 | CVE-2023-32323 | Improper Input Validation vulnerability in Matrix Synapse Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. | 4.3 |
| 2023-04-14 | CVE-2023-29529 | Unspecified vulnerability in Matrix Javascript SDK matrix-js-sdk is the Matrix Client-Server SDK for JavaScript and TypeScript. | 5.3 |
| 2023-03-28 | CVE-2022-36059 | Unspecified vulnerability in Matrix Javascript SDK matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. | 5.3 |
| 2023-03-28 | CVE-2022-36060 | Unspecified vulnerability in Matrix React SDK matrix-react-sdk is a Matrix chat protocol SDK for React Javascript. | 5.3 |
| 2022-11-22 | CVE-2022-41952 | Missing Release of Resource after Effective Lifetime vulnerability in Matrix Synapse Synapse before 1.52.0 with URL preview functionality enabled will attempt to generate URL previews for media stream URLs without properly limiting connection time. | 5.3 |
| 2022-11-13 | CVE-2022-3971 | Improper Enforcement of Message or Data Structure vulnerability in Matrix IRC Bridge A vulnerability was found in matrix-appservice-irc up to 0.35.1. | 5.6 |
| 2022-09-28 | CVE-2022-39246 | Key Exchange without Entity Authentication vulnerability in Matrix Software Development KIT matrix-android-sdk2 is the Matrix SDK for Android. | 5.3 |
| 2022-09-28 | CVE-2022-39236 | Unspecified vulnerability in Matrix Javascript SDK Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. | 5.3 |
| 2022-09-13 | CVE-2022-39202 | Improper Privilege Management vulnerability in Matrix IRC Bridge matrix-appservice-irc is an open source Node.js IRC bridge for Matrix. | 6.3 |