CVE-2021-40823

{"id": "CVE-2021-40823", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.2}]}, "published": "2021-09-13T19:15:19.137", "references": [{"url": "https://github.com/matrix-org/matrix-js-sdk/releases/tag/v12.4.1", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://matrix.org/blog/2021/09/13/vulnerability-disclosure-key-sharing", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://github.com/matrix-org/matrix-js-sdk/releases/tag/v12.4.1", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://matrix.org/blog/2021/09/13/vulnerability-disclosure-key-sharing", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-290"}]}], "descriptions": [{"lang": "en", "value": "A logic error in the room key sharing functionality of matrix-js-sdk (aka Matrix Javascript SDK) before 12.4.1 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys (via crafted Matrix protocol messages) that were originally sent by affected Matrix clients participating in that room. This allows the homeserver to decrypt end-to-end encrypted messages sent by affected clients."}, {"lang": "es", "value": "Un error l\u00f3gico en la funcionalidad de compartici\u00f3n de claves de sala de matrix-js-sdk (tambi\u00e9n conocido como Matrix Javascript SDK) antes de la versi\u00f3n 12.4.1 permite que un servidor dom\u00e9stico de Matrix malicioso presente en una sala cifrada robe las claves de cifrado de la sala (a trav\u00e9s de mensajes de protocolo de Matrix manipulados) que fueron enviados originalmente por los clientes de Matrix afectados que participan en esa sala. Esto permite al servidor dom\u00e9stico descifrar los mensajes cifrados de extremo a extremo enviados por los clientes afectados.e dispositivo"}], "lastModified": "2024-11-21T06:24:50.633", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:matrix:javascript_sdk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "698EDD62-CB34-43CB-8BEA-B39E37E3A847", "versionEndExcluding": "12.4.1"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}