CVE-2022-36060

Name of the Vulnerable Software and Affected Versions matrix-react-sdk versions prior to 3.53.0

Description Events sent with special strings in key places can temporarily disrupt or impede the matrix-react-sdk from functioning properly, such as by causing room or event tile crashes. The remainder of the application can appear functional, though certain rooms/events will not be rendered.

Recommendations For versions prior to 3.53.0, upgrade to matrix-react-sdk 3.53.0 to resolve the issue. As there are no known workarounds for this issue, upgrading to the fixed version is the recommended course of action.