Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Simplex Subscribe
Filtered by product Simplex Chat
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-45195 1 Simplex 2 Simplex Chat, Simplexmq 2022-11-17 N/A 5.3 MEDIUM
SimpleXMQ before 3.4.0, as used in SimpleX Chat before 4.2, does not apply a key derivation function to intended data, which can interfere with forward secrecy and can have other impacts if there is a compromise of a single private key. This occurs in the X3DH key exchange for the double ratchet protocol.