CVE-2024-47080 | matrix-org matrix-js-sdk up to 34.8.0 MatrixClient.sendSharedHistoryKeys information disclosure (GHSA-4jf8-g8wp-cx7c)

Inserito da Angelo Barbosa | Ott 15, 2024 | CVE

A vulnerability, which was classified as problematic, was found in matrix-org matrix-js-sdk up to 34.8.0. This affects the function MatrixClient.sendSharedHistoryKeys. The manipulation leads to information disclosure.

This vulnerability is uniquely identified as CVE-2024-47080. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47080 | matrix-org matrix-js-sdk up to 34.8.0 MatrixClient.sendSharedHistoryKeys information disclosure (GHSA-4jf8-g8wp-cx7c)

Post correlati

CVE-2023-6840 | GitLab Enterprise Edition prior 16.6.7/16.7.5/16.8.2 Protected Branch access control (Issue 435500)

CVE-2024-3256 | SourceCodester Internship Portal Management System 1.0 admin/edit_activity.php activity_id sql injection

CVE-2024-3745 | MSI Afterburner 4.6.6.16381 Beta 3 RTCore64.sys authorization

CVE-2023-37871 | WooCommerce GoCardless Plugin up to 2.5.6 on WordPress authorization