HIGH🇬🇧 English

CVE-2022-23597

CVSS 8.3v3.1pub. 2022-02-01upd. 2025-05-05

Element Desktop is a Matrix client for desktop platforms with Element Web at its core. Element Desktop before 1.9.7 is vulnerable to a remote program execution bug with user interaction. The exploit is non-trivial and requires clicking on a malicious link, followed by another button click. To the best of our knowledge, the vulnerability has never been exploited in the wild. If you are using Element Desktop < 1.9.7, we recommend upgrading at your earliest convenience. If successfully exploited, the vulnerability allows an attacker to specify a file path of a binary on the victim's computer which then gets executed. Notably, the attacker does *not* have the ability to specify program arguments. However, in certain unspecified configurations, the attacker may be able to specify an URI instead of a file path which then gets handled using standard platform mechanisms. These may allow exploiting further vulnerabilities in those mechanisms, potentially leading to arbitrary code execution.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
  • Element Desktop

    APP
    Element
    < 1.9.7
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCEMemory
CWE
Referencje

Powiązane podatności

CVE-2024-26131HIGH8.4ten sam vendor

Element Android is an Android Matrix Client. Element Android version 1.4.3 through 1.6.10 is vulnerable to int...

CVE-2026-45076MEDIUM5.1ten sam vendor

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, in federated rooms, malicious ho...

CVE-2026-45078MEDIUM6.8ten sam vendor

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can ca...

CVE-2025-27606MEDIUM5.1ten sam vendor

Element Android is an Android Matrix Client provided by Element. Element Android up to version 1.6.32 can, und...

CVE-2024-26132MEDIUM4.0ten sam vendor

Element Android is an Android Matrix Client. A third-party malicious application installed on the same phone c...