CVE-2021-21320 — Insufficient Verification of Data Authenticity in Matrix-react-sdk

CWE-345 — Insufficient Verification of Data Authenticity5 documents5 sources

Severity

4.3MEDIUMNVD

CNA2.6

EPSS

0.2%

top 60.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Matrix-org Matrix-react-sdk Matrix-react-sdk Project Matrix-react-sdk

Timeline

PublishedMar 2

Latest updateMar 3

Description

matrix-react-sdk is an npm package which is a Matrix SDK for React Javascript. In matrix-react-sdk before version 3.15.0, the user content sandbox can be abused to trick users into opening unexpected documents. The content is opened with a `blob` origin that cannot access Matrix user data, so messages and secrets are not at risk. This has been fixed in version 3.15.0.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages3 packages

▶CVEListV5matrix-org/matrix-react-sdk< 3.15.0

▶NVDmatrix-react-sdk_project/matrix-react-sdk< 3.15.0

▶npmmatrix-react-sdk_project/matrix-react-sdk< 3.15.0

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

User content sandbox can be confused into opening arbitrary documents↗2021-03-03

▶

GHSA

User content sandbox can be confused into opening arbitrary documents↗2021-03-03

▶

CVEList

User content sandbox can be confused into opening arbitrary documents↗2021-03-02

▶

💬Community

Bugzilla

XSS via postMessage in chat.mozilla.org↗2021-02-13

▶