MEDIUM6.5CVE-2021-32659Automatic room upgrade handling can be used maliciously to bridge a room non-consentually
from 0, < 2.6.1
MEDIUM5.0CVE-2023-38691matrix-appservice-bridge doesn't verify the sub parameter of an openId token exhange, allowing unauthorized access to provisioning APIs