CVE-2021-40824

Description from NVD

A logic error in the room key sharing functionality of Element Android before 1.2.2 and matrix-android-sdk2 (aka Matrix SDK for Android) before 1.2.2 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys (via crafted Matrix protocol messages) that were originally sent by affected Matrix clients participating in that room. This allows the attacker to decrypt end-to-end encrypted messages sent by affected clients.

Information Acquisition Date:2021-09-14T14:55Z
CVSS 2.0: 0.0 None CVSS 3.x: 0.0 None

NVD References

 https://github.com/matrix-org/matrix-android-sdk2/releases/tag/v1.2.2
     source:MISC
     tags:
 https://matrix.org/blog/2021/09/13/vulnerability-disclosure-key-sharing
     source:MISC
     tags:

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Android(3 tweets) Linux(1 tweets) iOS(1 tweets)



List of frequently cited URLs

URLNum of Times Referred to
http://twinybots.ch36
https://matrix.org/blog/2021/09/13/vulnerability-disclosure...4

▼ Show Information from Twitter(36)


List of frequently cited URLs

URLNum of Times Referred to
twinybots.ch36
matrix.org4

▼ Show Information from Twitter(36)


GitHub Search Results: Up to 10
NameURL
No Data

GitHub Search Results: Up to 10
NameURL
No Data

2021/09/16 Score : 1
Added Har-sia Database : 2021/09/14
Last Modified : 2021/09/16
Highest Scored Date : 2021/09/14
Highest Score : 18