CVE-2025-59160 | matrix-org matrix-js-sdk up to 38.1.x getJoinedRooms data authenticity (GHSA-mp7c-m3rh-r56v)

A vulnerability classified as problematic was found in matrix-org matrix-js-sdk up to 38.1.x. This issue affects the function MatrixClient::getJoinedRooms. Such manipulation leads to insufficient verification of data authenticity.

This vulnerability is listed as CVE-2025-59160. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More