Lucene search

CVE-2020-26890

🗓️ 24 Nov 2020 03:13:15Reported by [email protected]Type

Matrix Synapse before 1.20.0 allows remote attackers to execute a denial of service attack by permitting non-standard JSON values in m.room.member event

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 26
Prion	Code injection	24 Nov 202003:15	–	prion
OSV	Denial of service attack due to invalid JSON	24 Nov 202022:58	–	osv
OSV	PYSEC-2020-237	24 Nov 202003:15	–	osv
OSV	CVE-2020-26890	24 Nov 202003:15	–	osv
Debian CVE	CVE-2020-26890	24 Nov 202003:15	–	debiancve
OpenVAS	Fedora: Security Advisory for matrix-synapse (FEDORA-2020-2578d943d2)	10 Dec 202000:00	–	openvas
OpenVAS	Fedora: Security Advisory for python-authlib (FEDORA-2020-b90dac7fc4)	10 Dec 202000:00	–	openvas
OpenVAS	Fedora: Security Advisory for python-canonicaljson (FEDORA-2020-b90dac7fc4)	10 Dec 202000:00	–	openvas
OpenVAS	Fedora: Security Advisory for matrix-synapse (FEDORA-2020-b90dac7fc4)	10 Dec 202000:00	–	openvas
OpenVAS	Fedora: Security Advisory for python-canonicaljson (FEDORA-2020-2578d943d2)	10 Dec 202000:00	–	openvas

Nvd

Node

matrix synapseRange<1.20.0

Node

fedoraproject fedoraMatch32

fedoraproject fedoraMatch33

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U34DPP4ZLOEDUY2ZCWOHQPU5GA5LYNUQ/
github	www.github.com/matrix-org/synapse/security/advisories/GHSA-4mp3-385r-v63f
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/G7YXMMYQP46PYL664JQUXCA3LPBJU7DQ/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Nov 2020 03:15Current

7.5High risk

Vulners AI Score7.5

CVSS25

CVSS37.5

EPSS0.00955

CWE-20