CVE-2021-40824

Published: Sep 13, 2021Modified: Nov 21, 2024

5.9

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 2.2 / Impact: 3.6

Source: NVD

Description

A logic error in the room key sharing functionality of Element Android before 1.2.2 and matrix-android-sdk2 (aka Matrix SDK for Android) before 1.2.2 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys (via crafted Matrix protocol messages) that were originally sent by affected Matrix clients participating in that room. This allows the attacker to decrypt end-to-end encrypted messages sent by affected clients.

Affected (2)

Products: Matrix: Element, Matrix Android Sdk2

2 products

Matrix Android Sdk2

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Matrix Element	Before 1.2.2
Matrix Matrix Android Sdk2	Before 1.2.2

Related CWEs

Authentication Bypass by Spoofing

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

References (4)

https://github.com/matrix-org/matrix-android-sdk2/releases/tag/v1.2.2

Source: cve@mitre.org

PatchThird Party Advisory

https://matrix.org/blog/2021/09/13/vulnerability-disclosure-key-sharing

Source: cve@mitre.org

Vendor Advisory

https://github.com/matrix-org/matrix-android-sdk2/releases/tag/v1.2.2

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://matrix.org/blog/2021/09/13/vulnerability-disclosure-key-sharing

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.