Lucene search
+L

Matrix Synapse Improper Signature Validation

🗓️ 06 Jul 2026 08:03:21Reported by Python Packaging AdvisoryType 
pypa
 pypa
🔗 github.com👁 5 Views

Matrix Synapse below 0.33.3.1 and 0.33.2.1 allows remote attackers to spoof events via improper signature validation.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
CVE
CVE-2018-16515
18 Sep 201821:00
cve
Cvelist
CVE-2018-16515
18 Sep 201821:00
cvelist
Debian CVE
CVE-2018-16515
18 Sep 201821:00
debiancve
EUVD
EUVD-2022-3811
3 Oct 202520:07
euvd
Fedora
[SECURITY] Fedora 29 Update: matrix-synapse-0.33.3.1-1.fc29
21 Sep 201805:43
fedora
Fedora
[SECURITY] Fedora 28 Update: matrix-synapse-0.33.3.1-1.fc28
14 Sep 201823:14
fedora
Tenable Nessus
Fedora 28 : matrix-synapse (2018-6db422c637)
3 Jan 201900:00
nessus
Tenable Nessus
Fedora 29 : matrix-synapse (2018-be6e73f746)
3 Jan 201900:00
nessus
Tenable Nessus
Ubuntu 18.04 ESM : Synapse vulnerabilities (USN-6076-1)
16 May 202300:00
nessus
Github Security Blog
Matrix Synapse Improper Signature Validation
13 May 202201:50
github
Rows per page
Vulners
Node
pypimatrix-synapseRange0.33.30.33.3.1

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

06 Jul 2026 08:03Current
7.3High risk
Vulners AI Score7.3
CVSS 38.8
CVSS 26.5
EPSS0.01525
5