Lucene search
K

27 matches found

AlpineLinux
AlpineLinux
added 2022/08/19 9:15 p.m.33 views

CVE-2022-36009

gomatrixserverlib is a Go library for matrix protocol federation. Dendrite is a Matrix homeserver written in Go, an alternative to Synapse. The power level parsing within gomatrixserverlib was failing to parse the "eventsdefault" key of the m.room.powerlevels event, defaulting the event default...

8.8CVSS2.5AI score0.0065EPSS
Exploits0
CVE
CVE
added 2022/08/19 8:35 p.m.77 views

CVE-2022-36009

CVE-2022-36009 affects gomatrixserverlib (Matrix federation library) and the Dendrite server. The root cause was incorrect parsing of the m.room.power_levels events_default field, which could cause events to be improperly authorized or rejected in rooms where events_default had been changed. A fi...

8.8CVSS6.6AI score0.0065EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2022/08/19 8:35 p.m.26 views

CVE-2022-36009 Incorrect parsing of access level in gomatrixserverlib and dendrite

gomatrixserverlib is a Go library for matrix protocol federation. Dendrite is a Matrix homeserver written in Go, an alternative to Synapse. The power level parsing within gomatrixserverlib was failing to parse the "eventsdefault" key of the m.room.powerlevels event, defaulting the event default...

5CVSS8.4AI score0.0065EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/08/19 8:35 p.m.50 views

CVE-2022-36009 Incorrect parsing of access level in gomatrixserverlib and dendrite

gomatrixserverlib is a Go library for matrix protocol federation. Dendrite is a Matrix homeserver written in Go, an alternative to Synapse. The power level parsing within gomatrixserverlib was failing to parse the "eventsdefault" key of the m.room.powerlevels event, defaulting the event default...

5CVSS8.9AI score0.0065EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/08/19 8:35 p.m.5 views

CVE-2022-36009 Incorrect parsing of access level in gomatrixserverlib and dendrite

gomatrixserverlib is a Go library for matrix protocol federation. Dendrite is a Matrix homeserver written in Go, an alternative to Synapse. The power level parsing within gomatrixserverlib was failing to parse the "eventsdefault" key of the m.room.powerlevels event, defaulting the event default...

5CVSS8.6AI score0.0065EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/08/19 12:0 a.m.3 views

PT-2022-23108 · Unknown +1 · Gomatrixserverlib +1

Name of the Vulnerable Software and Affected Versions: Dendrite versions prior to 0.9.3 gomatrixserverlib versions prior to commit 723fd49 Description: The power level parsing within gomatrixserverlib was failing to parse the "events default" key of the m.room.power levels event, defaulting the...

8.8CVSS8.4AI score0.0065EPSS
Exploits0References12
CNNVD
CNNVD
added 2022/08/19 12:0 a.m.81 views

gomatrixserverlib 安全漏洞

gomatrixserverlib is a Go library open-sourced by matrix.org. Used for common functions required by the matrix server. A security vulnerability exists in gomatrixserverlib, which stems from the inability of its power level parsing program to parse the "eventsdefault" keyword of the...

8.8CVSS7.7AI score0.0065EPSS
Exploits0References4
Rows per page
Query Builder