Vulners
Lucene search
3 matches found
CVE-2019-18835
Matrix Synapse before 1.5.0 mishandles signature checking on some federation APIs. Events sent over /sendjoin, /sendleave, and /invite may not be correctly signed, or may not come from the expected servers...
9.8CVSS7.2AI score0.00191EPSS
Exploits0References4
Code injection
Matrix Synapse before 1.5.0 mishandles signature checking on some federation APIs. Events sent over /sendjoin, /sendleave, and /invite may not be correctly signed, or may not come from the expected servers...
7.5CVSS9.4AI score0.00191EPSS
Exploits0References2Affected Software1
CVE-2019-18835
Matrix Synapse before 1.5.0 mishandles signature checking on some federation APIs. Events sent over /sendjoin, /sendleave, and /invite may not be correctly signed, or may not come from the expected servers...
9.8CVSS8.7AI score0.00191EPSS
Exploits0
20