Lucene search

K
osvGoogleOSV:CVE-2019-5885
HistoryMar 21, 2019 - 4:01 p.m.

CVE-2019-5885

2019-03-2116:01:05
Google
osv.dev
2

7.6 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

79.2%

Matrix Synapse before 0.34.0.1, when the macaroon_secret_key authentication parameter is not set, uses a predictable value to derive a secret key and other secrets which could allow remote attackers to impersonate users.

7.6 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

79.2%