{"id":"CVE-2024-40648","summary":"`UserIdentity::is_verified` not checking verification status of own user identity while performing the check in matrix-rust-sdk","details":"matrix-rust-sdk is an implementation of a Matrix client-server library in Rust. The `UserIdentity::is_verified()` method in the matrix-sdk-crypto crate before version 0.7.2 doesn't take into account the verification status of the user's own identity while performing the check and may as a result return a value contrary to what is implied by its name and documentation. If the method is used to decide whether to perform sensitive operations towards a user identity, a malicious homeserver could manipulate the outcome in order to make the identity appear trusted. This is not a typical usage of the method, which lowers the impact. The method itself is not used inside the `matrix-sdk-crypto` crate. The 0.7.2 release of the `matrix-sdk-crypto` crate includes a fix. All users are advised to upgrade. There are no known workarounds for this vulnerability.","aliases":["GHSA-4qg4-cvh2-crgg","RUSTSEC-2024-0356"],"modified":"2026-04-10T05:15:26.274243Z","published":"2024-07-18T16:45:56.321Z","related":["openSUSE-SU-2024:14224-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/40xxx/CVE-2024-40648.json","cwe_ids":["CWE-287"],"cna_assigner":"GitHub_M"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/40xxx/CVE-2024-40648.json"},{"type":"ADVISORY","url":"https://github.com/matrix-org/matrix-rust-sdk/security/advisories/GHSA-4qg4-cvh2-crgg"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-40648"},{"type":"FIX","url":"https://github.com/matrix-org/matrix-rust-sdk/commit/76a7052149bb8f722df12da915b3a06d19a6695a"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/matrix-org/matrix-rust-sdk","events":[{"introduced":"0"},{"fixed":"a18f90bfaa8507b7a1e4649ad0e8b29aae4eedea"}]}],"versions":["0.1.0","0.7.0","0.7.1","matrix-qrcode-0.2.0","matrix-sdk-0.4.0","matrix-sdk-0.4.1","matrix-sdk-base-0.4.0","matrix-sdk-base-0.4.1","matrix-sdk-common-0.4.0","matrix-sdk-common-0.4.1","matrix-sdk-crypto-0.4.0","matrix-sdk-crypto-0.4.1","matrix-sdk-crypto-ffi-0.1.0","matrix-sdk-crypto-ffi-0.1.1","matrix-sdk-crypto-ffi-0.1.10","matrix-sdk-crypto-ffi-0.1.2","matrix-sdk-crypto-ffi-0.1.3","matrix-sdk-crypto-ffi-0.1.4","matrix-sdk-crypto-ffi-0.1.5","matrix-sdk-crypto-ffi-0.1.6","matrix-sdk-crypto-ffi-0.1.7","matrix-sdk-crypto-ffi-0.1.8","matrix-sdk-crypto-ffi-0.1.9","matrix-sdk-crypto-ffi-0.2.0","matrix-sdk-crypto-ffi-0.2.1","matrix-sdk-crypto-ffi-0.3.0","matrix-sdk-crypto-ffi-0.3.1","matrix-sdk-crypto-ffi-0.3.10","matrix-sdk-crypto-ffi-0.3.11","matrix-sdk-crypto-ffi-0.3.12","matrix-sdk-crypto-ffi-0.3.13","matrix-sdk-crypto-ffi-0.3.2","matrix-sdk-crypto-ffi-0.3.4","matrix-sdk-crypto-ffi-0.3.5","matrix-sdk-crypto-ffi-0.3.7","matrix-sdk-crypto-ffi-0.3.8","matrix-sdk-crypto-ffi-0.3.9","matrix-sdk-crypto-js-v0.1.0-alpha.0","matrix-sdk-crypto-js-v0.1.0-alpha.1","matrix-sdk-crypto-js-v0.1.0-alpha.2","matrix-sdk-crypto-js-v0.1.0-alpha.4","matrix-sdk-test-0.4.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-40648.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"}]}