{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-08T05:04:53.459","vulnerabilities":[{"cve":{"id":"CVE-2024-51750","sourceIdentifier":"security-advisories@github.com","published":"2024-11-12T17:15:10.130","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Element is a Matrix web client built using the Matrix React SDK. A malicious homeserver can send invalid messages over federation which can prevent Element Web and Desktop from rendering single messages or the entire room containing them. This was patched in Element Web and Desktop 1.11.85."},{"lang":"es","value":"Element es un cliente web de Matrix creado con el SDK de Matrix React. Un servidor doméstico malintencionado puede enviar mensajes no válidos a través de la federación, lo que puede impedir que Element Web and Desktop muestre mensajes individuales o toda la sala que los contiene. Esto se solucionó en Element Web and Desktop 1.11.85."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.1,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-248"}]}],"references":[{"url":"https://github.com/element-hq/element-web/commit/231073c578d5f92b33cde7aa2b0b9c5836b2dc48","source":"security-advisories@github.com"},{"url":"https://github.com/element-hq/element-web/security/advisories/GHSA-w36j-v56h-q9pc","source":"security-advisories@github.com"}]}}]}