CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42369

matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. A malicious homeserver can craft a room or room structure such that the predecessors form a cycle. The matrix-js-sdk's getRoomUpgradeHistory function will infinitely recurse in this case, causing the code to hang. This method is public but also called by the 'leaveRoomChain()' method, so leaving a room will also trigger the bug. This was patched in matrix-js-sdk 34.3.1.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.0%

CVSS Severity

CVSS v3 Score 4.1

References

Products affected by CVE-2024-42369

Matrix » Javascript Sdk » Version: N/A

cpe:2.3:a:matrix:javascript_sdk:-
Matrix » Javascript Sdk » Version: 0.1.0

cpe:2.3:a:matrix:javascript_sdk:0.1.0
Matrix » Javascript Sdk » Version: 0.1.1

cpe:2.3:a:matrix:javascript_sdk:0.1.1
Matrix » Javascript Sdk » Version: 0.10.0

cpe:2.3:a:matrix:javascript_sdk:0.10.0
Matrix » Javascript Sdk » Version: 0.10.1

cpe:2.3:a:matrix:javascript_sdk:0.10.1
Matrix » Javascript Sdk » Version: 0.10.2

cpe:2.3:a:matrix:javascript_sdk:0.10.2
Matrix » Javascript Sdk » Version: 0.10.3

cpe:2.3:a:matrix:javascript_sdk:0.10.3
Matrix » Javascript Sdk » Version: 0.10.4

cpe:2.3:a:matrix:javascript_sdk:0.10.4
Matrix » Javascript Sdk » Version: 0.10.5

cpe:2.3:a:matrix:javascript_sdk:0.10.5
Matrix » Javascript Sdk » Version: 0.10.6

cpe:2.3:a:matrix:javascript_sdk:0.10.6
Matrix » Javascript Sdk » Version: 0.10.7

cpe:2.3:a:matrix:javascript_sdk:0.10.7
Matrix » Javascript Sdk » Version: 0.10.8

cpe:2.3:a:matrix:javascript_sdk:0.10.8
Matrix » Javascript Sdk » Version: 0.10.9

cpe:2.3:a:matrix:javascript_sdk:0.10.9
Matrix » Javascript Sdk » Version: 0.11.0

cpe:2.3:a:matrix:javascript_sdk:0.11.0
Matrix » Javascript Sdk » Version: 0.11.1

cpe:2.3:a:matrix:javascript_sdk:0.11.1
Matrix » Javascript Sdk » Version: 0.12.0

cpe:2.3:a:matrix:javascript_sdk:0.12.0
Matrix » Javascript Sdk » Version: 0.12.1

cpe:2.3:a:matrix:javascript_sdk:0.12.1
Matrix » Javascript Sdk » Version: 0.13.0

cpe:2.3:a:matrix:javascript_sdk:0.13.0
Matrix » Javascript Sdk » Version: 0.13.1

cpe:2.3:a:matrix:javascript_sdk:0.13.1
Matrix » Javascript Sdk » Version: 0.14.0

cpe:2.3:a:matrix:javascript_sdk:0.14.0
Matrix » Javascript Sdk » Version: 0.14.1

cpe:2.3:a:matrix:javascript_sdk:0.14.1
Matrix » Javascript Sdk » Version: 0.14.2

cpe:2.3:a:matrix:javascript_sdk:0.14.2
Matrix » Javascript Sdk » Version: 0.14.3

cpe:2.3:a:matrix:javascript_sdk:0.14.3
Matrix » Javascript Sdk » Version: 0.2.0

cpe:2.3:a:matrix:javascript_sdk:0.2.0
Matrix » Javascript Sdk » Version: 0.2.1

cpe:2.3:a:matrix:javascript_sdk:0.2.1
Matrix » Javascript Sdk » Version: 0.2.2

cpe:2.3:a:matrix:javascript_sdk:0.2.2
Matrix » Javascript Sdk » Version: 0.3.0

cpe:2.3:a:matrix:javascript_sdk:0.3.0
Matrix » Javascript Sdk » Version: 0.4.0

cpe:2.3:a:matrix:javascript_sdk:0.4.0
Matrix » Javascript Sdk » Version: 0.4.1

cpe:2.3:a:matrix:javascript_sdk:0.4.1
Matrix » Javascript Sdk » Version: 0.4.2

cpe:2.3:a:matrix:javascript_sdk:0.4.2
Matrix » Javascript Sdk » Version: 0.5.0

cpe:2.3:a:matrix:javascript_sdk:0.5.0
Matrix » Javascript Sdk » Version: 0.5.1

cpe:2.3:a:matrix:javascript_sdk:0.5.1
Matrix » Javascript Sdk » Version: 0.5.2

cpe:2.3:a:matrix:javascript_sdk:0.5.2
Matrix » Javascript Sdk » Version: 0.5.3

cpe:2.3:a:matrix:javascript_sdk:0.5.3
Matrix » Javascript Sdk » Version: 0.5.4

cpe:2.3:a:matrix:javascript_sdk:0.5.4
Matrix » Javascript Sdk » Version: 0.5.5

cpe:2.3:a:matrix:javascript_sdk:0.5.5
Matrix » Javascript Sdk » Version: 0.5.6

cpe:2.3:a:matrix:javascript_sdk:0.5.6
Matrix » Javascript Sdk » Version: 0.6.0

cpe:2.3:a:matrix:javascript_sdk:0.6.0
Matrix » Javascript Sdk » Version: 0.6.1

cpe:2.3:a:matrix:javascript_sdk:0.6.1
Matrix » Javascript Sdk » Version: 0.6.2

cpe:2.3:a:matrix:javascript_sdk:0.6.2
Matrix » Javascript Sdk » Version: 0.6.3

cpe:2.3:a:matrix:javascript_sdk:0.6.3
Matrix » Javascript Sdk » Version: 0.6.4

cpe:2.3:a:matrix:javascript_sdk:0.6.4
Matrix » Javascript Sdk » Version: 0.7.0

cpe:2.3:a:matrix:javascript_sdk:0.7.0
Matrix » Javascript Sdk » Version: 0.7.1

cpe:2.3:a:matrix:javascript_sdk:0.7.1
Matrix » Javascript Sdk » Version: 0.7.10

cpe:2.3:a:matrix:javascript_sdk:0.7.10
Matrix » Javascript Sdk » Version: 0.7.11

cpe:2.3:a:matrix:javascript_sdk:0.7.11
Matrix » Javascript Sdk » Version: 0.7.12

cpe:2.3:a:matrix:javascript_sdk:0.7.12
Matrix » Javascript Sdk » Version: 0.7.13

cpe:2.3:a:matrix:javascript_sdk:0.7.13
Matrix » Javascript Sdk » Version: 0.7.2

cpe:2.3:a:matrix:javascript_sdk:0.7.2
Matrix » Javascript Sdk » Version: 0.7.3

cpe:2.3:a:matrix:javascript_sdk:0.7.3
Matrix » Javascript Sdk » Version: 0.7.4

cpe:2.3:a:matrix:javascript_sdk:0.7.4
Matrix » Javascript Sdk » Version: 0.7.5

cpe:2.3:a:matrix:javascript_sdk:0.7.5
Matrix » Javascript Sdk » Version: 0.7.6

cpe:2.3:a:matrix:javascript_sdk:0.7.6
Matrix » Javascript Sdk » Version: 0.7.7

cpe:2.3:a:matrix:javascript_sdk:0.7.7
Matrix » Javascript Sdk » Version: 0.7.8

cpe:2.3:a:matrix:javascript_sdk:0.7.8
Matrix » Javascript Sdk » Version: 0.7.9

cpe:2.3:a:matrix:javascript_sdk:0.7.9
Matrix » Javascript Sdk » Version: 0.8.0

cpe:2.3:a:matrix:javascript_sdk:0.8.0
Matrix » Javascript Sdk » Version: 0.8.1

cpe:2.3:a:matrix:javascript_sdk:0.8.1
Matrix » Javascript Sdk » Version: 0.8.2

cpe:2.3:a:matrix:javascript_sdk:0.8.2
Matrix » Javascript Sdk » Version: 0.8.3

cpe:2.3:a:matrix:javascript_sdk:0.8.3
Matrix » Javascript Sdk » Version: 0.8.4

cpe:2.3:a:matrix:javascript_sdk:0.8.4
Matrix » Javascript Sdk » Version: 0.8.5

cpe:2.3:a:matrix:javascript_sdk:0.8.5
Matrix » Javascript Sdk » Version: 0.9.0

cpe:2.3:a:matrix:javascript_sdk:0.9.0
Matrix » Javascript Sdk » Version: 0.9.1

cpe:2.3:a:matrix:javascript_sdk:0.9.1
Matrix » Javascript Sdk » Version: 0.9.2

cpe:2.3:a:matrix:javascript_sdk:0.9.2
Matrix » Javascript Sdk » Version: 1.0.0

cpe:2.3:a:matrix:javascript_sdk:1.0.0
Matrix » Javascript Sdk » Version: 1.0.1

cpe:2.3:a:matrix:javascript_sdk:1.0.1
Matrix » Javascript Sdk » Version: 1.0.2

cpe:2.3:a:matrix:javascript_sdk:1.0.2
Matrix » Javascript Sdk » Version: 1.0.3

cpe:2.3:a:matrix:javascript_sdk:1.0.3
Matrix » Javascript Sdk » Version: 1.0.4

cpe:2.3:a:matrix:javascript_sdk:1.0.4
Matrix » Javascript Sdk » Version: 1.1.0

cpe:2.3:a:matrix:javascript_sdk:1.1.0
Matrix » Javascript Sdk » Version: 1.2.0

cpe:2.3:a:matrix:javascript_sdk:1.2.0
Matrix » Javascript Sdk » Version: 10.0.0

cpe:2.3:a:matrix:javascript_sdk:10.0.0
Matrix » Javascript Sdk » Version: 10.1.0

cpe:2.3:a:matrix:javascript_sdk:10.1.0
Matrix » Javascript Sdk » Version: 11.0.0

cpe:2.3:a:matrix:javascript_sdk:11.0.0
Matrix » Javascript Sdk » Version: 11.1.0

cpe:2.3:a:matrix:javascript_sdk:11.1.0
Matrix » Javascript Sdk » Version: 11.2.0

cpe:2.3:a:matrix:javascript_sdk:11.2.0
Matrix » Javascript Sdk » Version: 12.0.0

cpe:2.3:a:matrix:javascript_sdk:12.0.0
Matrix » Javascript Sdk » Version: 12.0.1

cpe:2.3:a:matrix:javascript_sdk:12.0.1
Matrix » Javascript Sdk » Version: 12.1.0

cpe:2.3:a:matrix:javascript_sdk:12.1.0
Matrix » Javascript Sdk » Version: 12.2.0

cpe:2.3:a:matrix:javascript_sdk:12.2.0
Matrix » Javascript Sdk » Version: 12.3.0

cpe:2.3:a:matrix:javascript_sdk:12.3.0
Matrix » Javascript Sdk » Version: 12.4.0

cpe:2.3:a:matrix:javascript_sdk:12.4.0
Matrix » Javascript Sdk » Version: 12.5.0

cpe:2.3:a:matrix:javascript_sdk:12.5.0
Matrix » Javascript Sdk » Version: 13.0.0

cpe:2.3:a:matrix:javascript_sdk:13.0.0
Matrix » Javascript Sdk » Version: 14.0.0

cpe:2.3:a:matrix:javascript_sdk:14.0.0
Matrix » Javascript Sdk » Version: 14.0.1

cpe:2.3:a:matrix:javascript_sdk:14.0.1
Matrix » Javascript Sdk » Version: 15.0.0

cpe:2.3:a:matrix:javascript_sdk:15.0.0
Matrix » Javascript Sdk » Version: 15.1.0

cpe:2.3:a:matrix:javascript_sdk:15.1.0
Matrix » Javascript Sdk » Version: 15.1.1

cpe:2.3:a:matrix:javascript_sdk:15.1.1
Matrix » Javascript Sdk » Version: 15.2.0

cpe:2.3:a:matrix:javascript_sdk:15.2.0
Matrix » Javascript Sdk » Version: 15.2.1

cpe:2.3:a:matrix:javascript_sdk:15.2.1
Matrix » Javascript Sdk » Version: 15.3.0

cpe:2.3:a:matrix:javascript_sdk:15.3.0
Matrix » Javascript Sdk » Version: 17.1.0

cpe:2.3:a:matrix:javascript_sdk:17.1.0
Matrix » Javascript Sdk » Version: 17.2.0

cpe:2.3:a:matrix:javascript_sdk:17.2.0
Matrix » Javascript Sdk » Version: 18.0.0

cpe:2.3:a:matrix:javascript_sdk:18.0.0
Matrix » Javascript Sdk » Version: 18.1.0

cpe:2.3:a:matrix:javascript_sdk:18.1.0
Matrix » Javascript Sdk » Version: 19.0.0

cpe:2.3:a:matrix:javascript_sdk:19.0.0
Matrix » Javascript Sdk » Version: 19.1.0

cpe:2.3:a:matrix:javascript_sdk:19.1.0
Matrix » Javascript Sdk » Version: 19.2.0

cpe:2.3:a:matrix:javascript_sdk:19.2.0
Matrix » Javascript Sdk » Version: 19.3.0

cpe:2.3:a:matrix:javascript_sdk:19.3.0
Matrix » Javascript Sdk » Version: 19.4.0

cpe:2.3:a:matrix:javascript_sdk:19.4.0
Matrix » Javascript Sdk » Version: 19.5.0

cpe:2.3:a:matrix:javascript_sdk:19.5.0
Matrix » Javascript Sdk » Version: 19.6.0

cpe:2.3:a:matrix:javascript_sdk:19.6.0
Matrix » Javascript Sdk » Version: 19.7.0

cpe:2.3:a:matrix:javascript_sdk:19.7.0
Matrix » Javascript Sdk » Version: 2.0.0

cpe:2.3:a:matrix:javascript_sdk:2.0.0
Matrix » Javascript Sdk » Version: 2.0.1

cpe:2.3:a:matrix:javascript_sdk:2.0.1
Matrix » Javascript Sdk » Version: 2.1.0

cpe:2.3:a:matrix:javascript_sdk:2.1.0
Matrix » Javascript Sdk » Version: 2.1.1

cpe:2.3:a:matrix:javascript_sdk:2.1.1
Matrix » Javascript Sdk » Version: 2.2.0

cpe:2.3:a:matrix:javascript_sdk:2.2.0
Matrix » Javascript Sdk » Version: 2.3.0

cpe:2.3:a:matrix:javascript_sdk:2.3.0
Matrix » Javascript Sdk » Version: 2.3.1

cpe:2.3:a:matrix:javascript_sdk:2.3.1
Matrix » Javascript Sdk » Version: 2.3.2

cpe:2.3:a:matrix:javascript_sdk:2.3.2
Matrix » Javascript Sdk » Version: 2.4.0

cpe:2.3:a:matrix:javascript_sdk:2.4.0
Matrix » Javascript Sdk » Version: 2.4.1

cpe:2.3:a:matrix:javascript_sdk:2.4.1
Matrix » Javascript Sdk » Version: 2.4.2

cpe:2.3:a:matrix:javascript_sdk:2.4.2
Matrix » Javascript Sdk » Version: 2.4.3

cpe:2.3:a:matrix:javascript_sdk:2.4.3
Matrix » Javascript Sdk » Version: 2.4.4

cpe:2.3:a:matrix:javascript_sdk:2.4.4
Matrix » Javascript Sdk » Version: 2.4.5

cpe:2.3:a:matrix:javascript_sdk:2.4.5
Matrix » Javascript Sdk » Version: 2.4.6

cpe:2.3:a:matrix:javascript_sdk:2.4.6
Matrix » Javascript Sdk » Version: 24.0.0

cpe:2.3:a:matrix:javascript_sdk:24.0.0
Matrix » Javascript Sdk » Version: 24.1.0

cpe:2.3:a:matrix:javascript_sdk:24.1.0
Matrix » Javascript Sdk » Version: 3.0.0

cpe:2.3:a:matrix:javascript_sdk:3.0.0
Matrix » Javascript Sdk » Version: 34.1.0

cpe:2.3:a:matrix:javascript_sdk:34.1.0
Matrix » Javascript Sdk » Version: 34.2.0

cpe:2.3:a:matrix:javascript_sdk:34.2.0
Matrix » Javascript Sdk » Version: 34.3.0

cpe:2.3:a:matrix:javascript_sdk:34.3.0
Matrix » Javascript Sdk » Version: 4.0.0

cpe:2.3:a:matrix:javascript_sdk:4.0.0
Matrix » Javascript Sdk » Version: 5.0.0

cpe:2.3:a:matrix:javascript_sdk:5.0.0
Matrix » Javascript Sdk » Version: 5.0.1

cpe:2.3:a:matrix:javascript_sdk:5.0.1
Matrix » Javascript Sdk » Version: 5.1.0

cpe:2.3:a:matrix:javascript_sdk:5.1.0
Matrix » Javascript Sdk » Version: 5.1.1

cpe:2.3:a:matrix:javascript_sdk:5.1.1
Matrix » Javascript Sdk » Version: 5.2.0

cpe:2.3:a:matrix:javascript_sdk:5.2.0
Matrix » Javascript Sdk » Version: 5.3.0

cpe:2.3:a:matrix:javascript_sdk:5.3.0
Matrix » Javascript Sdk » Version: 5.3.1

cpe:2.3:a:matrix:javascript_sdk:5.3.1
Matrix » Javascript Sdk » Version: 6.0.0

cpe:2.3:a:matrix:javascript_sdk:6.0.0
Matrix » Javascript Sdk » Version: 6.1.0

cpe:2.3:a:matrix:javascript_sdk:6.1.0
Matrix » Javascript Sdk » Version: 6.2.0

cpe:2.3:a:matrix:javascript_sdk:6.2.0
Matrix » Javascript Sdk » Version: 6.2.1

cpe:2.3:a:matrix:javascript_sdk:6.2.1
Matrix » Javascript Sdk » Version: 6.2.2

cpe:2.3:a:matrix:javascript_sdk:6.2.2
Matrix » Javascript Sdk » Version: 7.0.0

cpe:2.3:a:matrix:javascript_sdk:7.0.0
Matrix » Javascript Sdk » Version: 7.1.0

cpe:2.3:a:matrix:javascript_sdk:7.1.0
Matrix » Javascript Sdk » Version: 8.0.0

cpe:2.3:a:matrix:javascript_sdk:8.0.0
Matrix » Javascript Sdk » Version: 8.0.1

cpe:2.3:a:matrix:javascript_sdk:8.0.1
Matrix » Javascript Sdk » Version: 8.1.0

cpe:2.3:a:matrix:javascript_sdk:8.1.0
Matrix » Javascript Sdk » Version: 8.2.0

cpe:2.3:a:matrix:javascript_sdk:8.2.0
Matrix » Javascript Sdk » Version: 8.3.0

cpe:2.3:a:matrix:javascript_sdk:8.3.0
Matrix » Javascript Sdk » Version: 8.4.0

cpe:2.3:a:matrix:javascript_sdk:8.4.0
Matrix » Javascript Sdk » Version: 8.4.1

cpe:2.3:a:matrix:javascript_sdk:8.4.1
Matrix » Javascript Sdk » Version: 8.5.0

cpe:2.3:a:matrix:javascript_sdk:8.5.0
Matrix » Javascript Sdk » Version: 9.0.0

cpe:2.3:a:matrix:javascript_sdk:9.0.0
Matrix » Javascript Sdk » Version: 9.0.1

cpe:2.3:a:matrix:javascript_sdk:9.0.1
Matrix » Javascript Sdk » Version: 9.1.0

cpe:2.3:a:matrix:javascript_sdk:9.1.0
Matrix » Javascript Sdk » Version: 9.10.0

cpe:2.3:a:matrix:javascript_sdk:9.10.0
Matrix » Javascript Sdk » Version: 9.11.0

cpe:2.3:a:matrix:javascript_sdk:9.11.0
Matrix » Javascript Sdk » Version: 9.2.0

cpe:2.3:a:matrix:javascript_sdk:9.2.0
Matrix » Javascript Sdk » Version: 9.3.0

cpe:2.3:a:matrix:javascript_sdk:9.3.0
Matrix » Javascript Sdk » Version: 9.4.0

cpe:2.3:a:matrix:javascript_sdk:9.4.0
Matrix » Javascript Sdk » Version: 9.4.1

cpe:2.3:a:matrix:javascript_sdk:9.4.1
Matrix » Javascript Sdk » Version: 9.5.0

cpe:2.3:a:matrix:javascript_sdk:9.5.0
Matrix » Javascript Sdk » Version: 9.5.1

cpe:2.3:a:matrix:javascript_sdk:9.5.1
Matrix » Javascript Sdk » Version: 9.6.0

cpe:2.3:a:matrix:javascript_sdk:9.6.0
Matrix » Javascript Sdk » Version: 9.7.0

cpe:2.3:a:matrix:javascript_sdk:9.7.0
Matrix » Javascript Sdk » Version: 9.8.0

cpe:2.3:a:matrix:javascript_sdk:9.8.0
Matrix » Javascript Sdk » Version: 9.9.0

cpe:2.3:a:matrix:javascript_sdk:9.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42369

Products

Pricing

Contact Us