Every CVE whose affected-product data names Matrix Olm, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-34813 — CVSS 9.8 (critical): Matrix libolm before 3.2.3 allows a malicious Matrix homeserver to crash a client (while it is attempting to retrieve an Olm encrypted room…
CVE-2021-44538 — CVSS 9.8 (critical): The olm_session_describe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. The Olm session object represents a…
CVE-2024-45191 — CVSS 5.3 (medium): An issue was discovered in Matrix libolm through 3.2.16. The AES implementation is vulnerable to cache-timing attacks due to use of…
CVE-2024-45192 — CVSS 5.3 (medium): An issue was discovered in Matrix libolm through 3.2.16. Cache-timing attacks can occur due to use of base64 when decoding group session…
CVE-2024-45193 — CVSS 4.3 (medium): An issue was discovered in Matrix libolm through 3.2.16. There is Ed25519 signature malleability due to lack of validation criteria (does…