CVE-2024-45193
published 2024-08-22CVE-2024-45193: An issue was discovered in Matrix libolm through 3.2.16. There is Ed25519 signature malleability due to lack of validation criteria (does not ensure that S <…
PriorityP419medium4.3CVSS 3.1
AVNACLPRLUINSUCNILAN
EPSS
0.28%
20.1th percentile
An issue was discovered in Matrix libolm through 3.2.16. There is Ed25519 signature malleability due to lack of validation criteria (does not ensure that S < n). This refers to the libolm implementation of Olm. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | olm | — | — |
| matrix | olm | <= 3.2.16 | — |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
osv4.3MEDIUM
vendor_debian4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
CVE-2024-45193: An issue was discovered in Matrix libolm through 3
osv·2024-08-22·CVSS 4.3
CVE-2024-45193 [MEDIUM] CVE-2024-45193: An issue was discovered in Matrix libolm through 3
An issue was discovered in Matrix libolm through 3.2.16. There is Ed25519 signature malleability due to lack of validation criteria (does not ensure that S < n). This refers to the libolm implementation of Olm. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
GHSA
GHSA-w58g-789j-fj58: An issue was discovered in Matrix libolm (aka Olm) through 3
ghsa_unreviewed·2024-08-22
CVE-2024-45193 GHSA-w58g-789j-fj58: An issue was discovered in Matrix libolm (aka Olm) through 3
An issue was discovered in Matrix libolm (aka Olm) through 3.2.16. There is Ed25519 signature malleability due to lack of validation criteria (does not ensure that S < n). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Debian
CVE-2024-45193: olm - An issue was discovered in Matrix libolm through 3.2.16. There is Ed25519 signat...
vendor_debian·2024·CVSS 4.3
CVE-2024-45193 [MEDIUM] CVE-2024-45193: olm - An issue was discovered in Matrix libolm through 3.2.16. There is Ed25519 signat...
An issue was discovered in Matrix libolm through 3.2.16. There is Ed25519 signature malleability due to lack of validation criteria (does not ensure that S < n). This refers to the libolm implementation of Olm. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Scope: local
bookworm: open
bullseye: open
forky: open
sid: open
trixie: open
No detection rules found.
No public exploits indexed.
2024-08-22
Published