Vulnerability Description
Element iOS is an iOS Matrix client provided by Element. It is based on MatrixSDK. Prior to version 1.9.7, events encrypted using Megolm for which trust could not be established did not get decorated accordingly (with warning shields). Therefore a malicious homeserver could inject messages into the room without the user being alerted that the messages were not sent by a verified group member, even if the user has previously verified all group members. This issue has been patched in Element iOS 1.9.7. There are currently no known workarounds.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Element | Element | < 1.9.7 |
Related Weaknesses (CWE)
References
- https://github.com/vector-im/element-ios/releases/tag/v1.9.7Release NotesThird Party Advisory
- https://github.com/vector-im/element-ios/security/advisories/GHSA-fm8m-99j7-323gThird Party Advisory
- https://github.com/vector-im/element-ios/releases/tag/v1.9.7Release NotesThird Party Advisory
- https://github.com/vector-im/element-ios/security/advisories/GHSA-fm8m-99j7-323gThird Party Advisory
FAQ
What is CVE-2022-41904?
CVE-2022-41904 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Element iOS is an iOS Matrix client provided by Element. It is based on MatrixSDK. Prior to version 1.9.7, events encrypted using Megolm for which trust could not be established did not get decorated ...
How severe is CVE-2022-41904?
CVE-2022-41904 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-41904?
Check the references section above for vendor advisories and patch information. Affected products include: Element Element.