VDB

GCVE-110-MAGEIA-2022-355

GCVE-110-MAGEIA-2022-355
Advisory Published
Vulnetix · Advisory published October 1, 2022
Improperly formed beacon events can disrupt or impede the matrix-js-sdk from functioning properly(CVE-2022-39236) Too permissive key forwarding strategy allowing impersonation (CVE-2022-39249) Trusting/verifying the user identity under the control of the homeserver instead of the intended one. (CVE-2022-39250) Fake to-device messages appearing to originate from another user. (CVE-2022-39251)

Affected Products

VendorProductVersionsPlatforms
Mageiathunderbird-l10n0 (affected), 102.3.1-1.mga8 (unaffected)
Mageiathunderbird0 (affected), 102.3.1-1.mga8 (unaffected)

Browse GCVE Records

73,734 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›