| CVE-2023-28427 |
high |
— |
8.0 |
|
|
|
3y ago |
RHSA-2023:1802: thunderbird security update (Important) |
| CVE-2022-39236 |
high |
— |
8.0 |
|
|
|
4y ago |
RHSA-2022:7190: thunderbird security update (Important) |
| CVE-2022-39249 |
high |
— |
8.0 |
|
|
|
4y ago |
RHSA-2022:7190: thunderbird security update (Important) |
| CVE-2022-39250 |
high |
— |
8.0 |
|
|
|
4y ago |
RHSA-2022:7190: thunderbird security update (Important) |
| CVE-2022-39251 |
high |
— |
8.0 |
|
|
|
4y ago |
RHSA-2022:7190: thunderbird security update (Important) |
| CVE-2022-36059 |
high |
— |
8.0 |
|
|
|
4y ago |
RHSA-2022:6708: thunderbird security update (Important) |
| CVE-2021-40823 |
high |
— |
8.0 |
|
|
|
5y ago |
A logic error in the room key sharing functionality of matrix-js-sdk (aka Matrix Javascript SDK) before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encrypti… |
| CVE-2025-59160 |
unknown |
— |
— |
|
|
|
9mo ago |
Matrix JavaScript SDK is a Matrix Client-Server SDK for JavaScript and TypeScript. matrix-js-sdk before 38.2.0 has insufficient validation of room predecessor links in MatrixClient::getJoinedRooms, a… |
| CVE-2024-50336 |
unknown |
— |
— |
|
|
|
2y ago |
matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. matrix-js-sdk before 34.11.0 is vulnerable to client-side path traversal via crafted MXC URIs. A malicious room member c… |
| CVE-2024-47080 |
unknown |
— |
— |
|
|
|
2y ago |
matrix-js-sdk is the Matrix Client-Server SDK for JavaScript and TypeScript. In matrix-js-sdk versions versions 9.11.0 through 34.7.0, the method `MatrixClient.sendSharedHistoryKeys` is vulnerable to… |
| CVE-2024-42369 |
unknown |
— |
— |
|
|
|
2y ago |
matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. A malicious homeserver can craft a room or room structure such that the predecessors form a cycle. The matrix-js-sdk's g… |
| CVE-2023-29529 |
unknown |
— |
— |
|
|
|
3y ago |
matrix-js-sdk is the Matrix Client-Server SDK for JavaScript and TypeScript. An attacker present in a room where an MSC3401 group call is taking place can eavesdrop on the video and audio of particip… |