CVE-2024-40640 | matrix-org vodozemac up to 0.6.x Base64 Encoding timing discrepancy

Inserito da Angelo Barbosa | Lug 17, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in matrix-org vodozemac up to 0.6.x. Affected by this issue is some unknown functionality of the component Base64 Encoding Handler. The manipulation leads to observable timing discrepancy.

This vulnerability is handled as CVE-2024-40640. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-40640 | matrix-org vodozemac up to 0.6.x Base64 Encoding timing discrepancy

Post correlati

CVE-2024-32981 | SilverStripe Framework up to 5.2.15 cross site scripting

CVE-2023-38575 | Intel CPU Return Predictor Target information disclosure (intel-sa-00982)

CVE-2024-32567 | Designinvento DirectoryPress Plugin up to 3.6.7 on WordPress cross site scripting

CVE-2024-4991 | SiAdmin 1.1 aksi_pass.php nama_lengkap sql injection