Lucene search

CVE-2021-21332

🗓️ 26 Mar 2021 20:11:15Reported by [email protected]Type

Synapse Matrix server XSS vulnerability in password reset endpoint

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 14
Prion	Cross site scripting	26 Mar 202120:15	–	prion
Veracode	Cross-site Scripting (XSS)	27 Mar 202122:52	–	veracode
Github Security Blog	Cross-site scripting (XSS) vulnerability in the password reset endpoint	26 Mar 202119:52	–	github
OSV	Cross-site scripting (XSS) vulnerability in the password reset endpoint	26 Mar 202119:52	–	osv
OSV	CVE-2021-21332	26 Mar 202120:15	–	osv
OSV	PYSEC-2021-133	26 Mar 202120:15	–	osv
Cvelist	CVE-2021-21332 Cross-site scripting (XSS) vulnerability in the password reset endpoint	26 Mar 202119:55	–	cvelist
Debian CVE	CVE-2021-21332	26 Mar 202120:15	–	debiancve
CNVD	Matrix Synapse Cross-Site Scripting Vulnerability (CNVD-2021-24348)	30 Mar 202100:00	–	cnvd
CVE	CVE-2021-21332	26 Mar 202120:15	–	cve

Nvd

Node

matrix synapseRange<1.27.0

Node

fedoraproject fedoraMatch34

Source	Link
github	www.github.com/matrix-org/synapse/pull/9200
github	www.github.com/matrix-org/synapse/releases/tag/v1.27.0
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNNAJOZNMVMXM6AS7RFFKB4QLUJ4IFEY/
github	www.github.com/matrix-org/synapse/commit/e54746bdf7d5c831eabe4dcea76a7626f1de73df
github	www.github.com/matrix-org/synapse/security/advisories/GHSA-246w-56m2-5899

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Mar 2021 20:15Current

CVSS24.3

CVSS38.2

EPSS0.00505

CWE-79