Medium severity5.3OSV Advisory· Published Apr 3, 2025· Updated Jun 17, 2026
CVE-2025-31127
CVE-2025-31127
Description
Element X Android is a Matrix Android Client provided by element.io. In Element X Android versions between 0.4.16 and 25.03.3, the entity in control of the element.json well-known file is able, under certain conditions, to get access to the media encryption keys used for an Element Call call. This vulnerability is fixed in 25.03.4.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2v0.4.16, v0.5.0, v0.5.1, …+ 1 more
- (no CPE)range: v0.4.16, v0.5.0, v0.5.1, …
- (no CPE)range: 0.4.16 - 25.03.3
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.