- Description
- Mjolnir is a moderation tool for Matrix. Mjolnir v1.9.0 responds to management commands from any room the bot is member of. This can allow users who aren't operators of the bot to use the bot's functions, including server administration components if enabled. Version 1.9.1 reverts the feature that introduced the bug, and version 1.9.2 reintroduces the feature safely. Downgrading to version 1.8.3 is recommended if upgrading to 1.9.1 or higher isn't possible.
- Source
- security-advisories@github.com
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 9.1
- Impact score
- 5.2
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
- Severity
- CRITICAL
- security-advisories@github.com
- CWE-671
- Hype score
- Not currently trending
CVE-2025-24024 01/21/2025 08:15:46 PM BaseSeverity: CRITICAL Mjolnir is a moderation tool for Matrix. Mjolnir v1.9.0 responds to management commands from any room the bot is member of. This c... https://t.co/zldQl2fRvy
@CVETracker
22 Jan 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-24024: CRITICAL] Beware! Mjolnir v1.9.0 vulnerability allows unauthorized users to access server administration functions. Upgrade to v1.9.1 or higher urgently or revert to v1.8.3 for safety.#cybersecurity,#vulnerability https://t.co/qlioUeaBJF https://t.co/ssUT5ZTxxS
@CveFindCom
21 Jan 2025
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes