User content sandbox can be confused into opening arbitrary documents

GHSA-52mq-6jcv-j79x · CVE-2021-21320

Published Mar 3, 2021 · Modified Mar 13, 2026

Description

Impact

The user content sandbox can be abused to trick users into opening unexpected documents after several user interactions. The content can be opened with a blob origin from the Matrix client, so it is possible for a malicious document to access user messages and secrets.

Patches

This has been fixed by https://github.com/matrix-org/matrix-react-sdk/pull/5657, which is included in 3.15.0.

Workarounds

There are no known workarounds.

References

WEB https://github.com/matrix-org/matrix-react-sdk/security/advisories/GHSA-52mq-6jcv-j79x
ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2021-21320
WEB https://github.com/matrix-org/matrix-react-sdk/pull/5657
WEB https://github.com/matrix-org/matrix-react-sdk/commit/b386f0c73b95ecbb6ea7f8f79c6ff5171a8dedd1
WEB https://www.npmjs.com/package/matrix-react-sdk

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes