CVE-2022-36060 - Breaking Matrix Chat Rooms with Malicious Events in matrix-react-sdk
Matrix is an open standard for secure, decentralized, real-time communication. If you use Element or other web Matrix chat clients, you’re probably relying on
CVE-2022-41952 - Synapse URL Preview Can Cause Streaming Server Overload — Full Exploit Analysis and Fix
A critical vulnerability, CVE-2022-41952, was discovered in Matrix Synapse, the reference Matrix homeserver written in Python. This issue affects all Synapse versions before 1.52.