VYPR
Medium severity5.3OSV Advisory· Published Apr 3, 2025· Updated Jun 17, 2026

CVE-2025-31127

CVE-2025-31127

Description

Element X Android is a Matrix Android Client provided by element.io. In Element X Android versions between 0.4.16 and 25.03.3, the entity in control of the element.json well-known file is able, under certain conditions, to get access to the media encryption keys used for an Element Call call. This vulnerability is fixed in 25.03.4.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • v0.4.16, v0.5.0, v0.5.1, …+ 1 more
    • (no CPE)range: v0.4.16, v0.5.0, v0.5.1, …
    • (no CPE)range: 0.4.16 - 25.03.3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.