Security Advisories for matrix-js-sdk in npm
Moderate
about 1 month ago
matrix-js-sdk has insufficient validation when considering a room to be upgraded by another
npm
matrix-js-sdk
Moderate
12 months ago
matrix-js-sdk has insufficient MXC URI validation which allows client-side path traversal
npm
matrix-js-sdk
High
about 1 year ago
Matrix JavaScript SDK's key history sharing could share keys to malicious devices
npm
matrix-js-sdk
Moderate
about 1 year ago
matrix-js-sdk will freeze when a user sets a room with itself as a its predecessor
npm
matrix-js-sdk
Moderate
over 2 years ago
matrix-js-sdk vulnerable to invisible eavesdropping in group calls
npm
matrix-js-sdk
High
about 3 years ago
matrix-js-sdk subject to user impersonation due to key/device identifier confusion in SAS verification
npm
matrix-js-sdk
High
about 3 years ago
matrix-js-sdk subject to user spoofing via Olm/Megolm protocol confusion
npm
matrix-js-sdk
High
about 3 years ago
matrix-js-sdk subject to impersonated messages due to permissive key forwarding
npm
matrix-js-sdk
Moderate
about 3 years ago
Improper beacon events in matrix-js-sdk can result in availability issues
npm
matrix-js-sdk
Moderate
about 4 years ago
matrix-js-sdk can be tricked into disclosing E2EE room keys to a participating homeserver
npm
matrix-js-sdk