matrix-js-sdk@24.0.0 vulnerabilities
Matrix Client-Server SDK for Javascript
-
latest version
32.2.0
-
latest non vulnerable version
-
first published
9 years ago
-
latest version published
13 days ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the matrix-js-sdk package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
matrix-js-sdk is a Matrix Client-Server SDK for Javascript Affected versions of this package are vulnerable to Missing Authorization which can lead to invisible eavesdropping in group calls, on the video and audio of participants without their knowledge. The attacker will not appear to be participating in the call. Notes: Legacy 1:1 calls are unaffected. How to fix Missing Authorization? Upgrade |
<24.1.0
|