CVE-2024-40648

{"id": "CVE-2024-40648", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.5, "exploitabilityScore": 2.8}]}, "published": "2024-07-18T17:15:05.427", "references": [{"url": "https://github.com/matrix-org/matrix-rust-sdk/commit/76a7052149bb8f722df12da915b3a06d19a6695a", "source": "security-advisories@github.com"}, {"url": "https://github.com/matrix-org/matrix-rust-sdk/security/advisories/GHSA-4qg4-cvh2-crgg", "source": "security-advisories@github.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-287"}]}], "descriptions": [{"lang": "en", "value": "matrix-rust-sdk is an implementation of a Matrix client-server library in Rust. The `UserIdentity::is_verified()` method in the matrix-sdk-crypto crate before version 0.7.2 doesn't take into account the verification status of the user's own identity while performing the check and may as a result return a value contrary to what is implied by its name and documentation. If the method is used to decide whether to perform sensitive operations towards a user identity, a malicious homeserver could manipulate the outcome in order to make the identity appear trusted. This is not a typical usage of the method, which lowers the impact. The method itself is not used inside the `matrix-sdk-crypto` crate. The 0.7.2 release of the `matrix-sdk-crypto` crate includes a fix. All users are advised to upgrade. There are no known workarounds for this vulnerability."}, {"lang": "es", "value": "Matrix-rust-sdk es una implementaci\u00f3n de una librer\u00eda cliente-servidor Matrix en Rust. El m\u00e9todo `UserIdentity::is_verified()` en la caja Matrix-sdk-crypto anterior a la versi\u00f3n 0.7.2 no tiene en cuenta el estado de verificaci\u00f3n de la propia identidad del usuario al realizar la verificaci\u00f3n y, como resultado, puede devolver un valor contrario. a lo que implica su nombre y documentaci\u00f3n. Si el m\u00e9todo se utiliza para decidir si se realizan operaciones confidenciales con respecto a la identidad de un usuario, un servidor dom\u00e9stico malicioso podr\u00eda manipular el resultado para que la identidad parezca confiable. Este no es un uso t\u00edpico del m\u00e9todo, lo que reduce el impacto. El m\u00e9todo en s\u00ed no se utiliza dentro de la caja `matrix-sdk-crypto`. La versi\u00f3n 0.7.2 de la caja `matrix-sdk-crypto` incluye una soluci\u00f3n. Se recomienda a todos los usuarios que actualicen. No se conocen workarounds para esta vulnerabilidad."}], "lastModified": "2024-07-19T13:01:44.567", "sourceIdentifier": "security-advisories@github.com"}