216.73.217.145

CVE-2024-51750

· Published 12/11/2024 17:15 · Modified 13/11/2024 17:01

Labels: CVE-2024-51750 2024-11-12CVE-2024-51750CWE-248[email protected]

Essential information

Published
12/11/2024 17:15
Modified
13/11/2024 17:01
Author
Creator
CVSS
5.0 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L

CVSS metrics

Description

Element is a Matrix web client built using the Matrix React SDK. A malicious homeserver can send invalid messages over federation which can prevent Element Web and Desktop from rendering single messages or the entire room containing them. This was patched in Element Web and Desktop 1.11.85.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References