Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A logic error in the room key sharing functionality of Element Android before 1.2.2 and matrix-android-sdk2 (aka Matrix SDK for Android) before 1.2.2 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys (via crafted Matrix protocol messages) that were originally sent by affected Matrix clients participating in that room. This allows the attacker to decrypt end-to-end encrypted messages sent by affected clients.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Element Android 加密问题漏洞
Vulnerability Description
Element Android是Element提供的 Android Matrix 客户端。 Element Android 1.2.2 之前版本和matrix-android-sdk2 1.2.2 之前版本存在加密问题漏洞,该漏洞源于设备的房间钥匙共享功能存在逻辑错误,导致身份验证不充分,从而可以冒充请求钥匙的设备。
CVSS Information
N/A
Vulnerability Type
N/A