CVE-2026-42453

creationtimestamp| type| source ---|---|--- 2026-05-09 01:23:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlf3icpcbg2v...

Linux Distros Unpatched Vulnerability : CVE-2023-42453

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Users were able to forge read receipts for any event if they kn...

CVE-2024-42453

creationtimestamp| type| source ---|---|--- 2024-12-03 18:19:48+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113590271100041825 2024-12-04 01:57:53+00:00| seen| https://infosec.exchange/users/cve/statuses/113592072421345224 2024-12-04 04:12:29+00:00| seen|...

Fedora 39 : matrix-synapse (2023-4d4c73a8f0)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-4d4c73a8f0 advisory. Update to v1.94.0 CVE-2023-45129 ---- Update to v1.93.0 CVE-2023-41335, CVE-2023-42453 Tenable has extracted the preceding description block directl...

Fedora: Security Advisory (FEDORA-2023-4d4c73a8f0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2023-42453

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Users were able to forge read receipts for any event if they knew the room ID and event ID. Note that the users were not able to view the events, but simply mark it as read. This could be confusing as...

matrix-synapse-testutils (>=1.65.0.0 <=1.92.2.0) potentially affected by CVE-2023-42453 via matrix-synapse (>=1.65.0 <=1.92.2)

matrix-synapse PYPI version =1.65.0, =1.65.0.0, =1.92.2.0 Source cves: CVE-2023-42453 Source advisory: OSV:PYSEC-2023-180...

CVE-2023-42453 Improper validation of receipts allows forged read receipts in matrix synapse

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Users were able to forge read receipts for any event if they knew the room ID and event ID. Note that the users were not able to view the events, but simply mark it as read. This could be confusing as...

CVE-2023-42453

CVE-2023-42453 affects Synapse (Matrix.org) — a Python/Twisted Matrix homeserver. The vulnerability allows forging read receipts for arbitrary events when the attacker knows the room ID and event ID, without needing to view the events. The consequence is clients may display the event as read by t...

CVE-2023-42453 Improper validation of receipts allows forged read receipts in matrix synapse

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Users were able to forge read receipts for any event if they knew the room ID and event ID. Note that the users were not able to view the events, but simply mark it as read. This could be confusing as...

CVE-2023-42453

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Users were able to forge read receipts for any event if they knew the room ID and event ID. Note that the users were not able to view the events, but simply mark it as read. This could be confusing as...

CVE-2023-42453

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Users were able to forge read receipts for any event if they knew the room ID and event ID. Note that the users were not able to view the events, but simply mark it as read. This could be confusing as...

CVE-2023-42453 Improper validation of receipts allows forged read receipts in matrix synapse

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Users were able to forge read receipts for any event if they knew the room ID and event ID. Note that the users were not able to view the events, but simply mark it as read. This could be confusing as...

matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.92.2.0) +6 more potentially affected by CVE-2023-42453 via matrix-synapse (>=1.153.0 <=1.92.2)

matrix-synapse PYPI version =1.153.0, =0.1.1, =1.65.0.0, =0.1.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2023-42453 Source advisory: OSV:GHSA-7565-CQ32-VX2X...

CVE-2022-42453

creationtimestamp| type| source ---|---|--- 2022-12-19 14:25:33+00:00| seen| https://t.me/cibsecurity/54847...

CVE-2022-42453

CVE-2022-42453 relates to the HCL BigFix Platform and involves insufficient warnings when a Fixlet is imported by a user. The warning currently assumes the script owner is the logged-in user, and warnings are also insufficient when attempting to run the script. Several connected records (CVE list...