CVE-2024-42347Exposure of Private Personal Information to an Unauthorized Actor in Matrix-react-sdk

CWE-359Exposure of Private Personal Information to an Unauthorized Actor4 documents4 sources
Severity
6.5MEDIUMNVD
CNA7.7
EPSS
0.8%
top 26.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Matrix-org Matrix-react-sdkMatrix Matrix-react-sdkMatrix-react-sdk Project Matrix-react-sdk
Timeline
PublishedAug 6

Description

matrix-react-sdk is a react-based SDK for inserting a Matrix chat/voip client into a web page. A malicious homeserver could manipulate a user's account data to cause the client to enable URL previews in end-to-end encrypted rooms, in which case any URLs in encrypted messages would be sent to the server. This was patched in matrix-react-sdk 3.105.0. Deployments that trust their homeservers, as well as closed federations of trusted servers, are not affected. Users are advised to upgrade. There are

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

CVEListV5matrix-org/matrix-react-sdk< 3.105.1

🔴Vulnerability Details

3
OSV
Matrix SDK for React's URL preview setting for a room is controllable by the homeserver2024-08-06
GHSA
Matrix SDK for React's URL preview setting for a room is controllable by the homeserver2024-08-06
CVEList
URL preview setting for a room is controllable by the homeserver in matrix-react-sdk2024-08-06
CVE-2024-42347 — Matrix-react-sdk vulnerability | cvebase