216.73.217.172

CVE-2025-66622

· Published 09/12/2025 16:18 · Modified 09/12/2025 18:36

Labels: CVE-2025-66622 2025-12-09CVE-2025-66622CWE-755[email protected]

Essential information

Published
09/12/2025 16:18
Modified
09/12/2025 18:36
Author
Creator
CVSS
1.3 LOW (v3) 1.3 LOW (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

matrix-sdk-base is the base component to build a Matrix client library. Versions 0.14.1 and prior are unable to handle responses that include custom m.room.join_rules values due to a serialization bug. This can be exploited to cause a denial-of-service condition, if a user is invited to a room with non-standard join rules, the crate's sync process will stall, preventing further processing for all rooms. This is fixed in version 0.16.0.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

References