Lucene search

K
cvelistMitreCVELIST:CVE-2019-18835
HistoryNov 07, 2019 - 11:12 p.m.

CVE-2019-18835

2019-11-0723:12:07
mitre
www.cve.org

9.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.8%

Matrix Synapse before 1.5.0 mishandles signature checking on some federation APIs. Events sent over /send_join, /send_leave, and /invite may not be correctly signed, or may not come from the expected servers.

9.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.8%