Lucene search
K

6 matches found

Ubuntu
Ubuntu
added 2023/05/16 7:45 a.m.43 views

USN-6076-1: Synapse vulnerabilities

It was discovered that Synapse incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. CVE-2019-18835, CVE-2018-12291, CVE-2018-10657 It was...

9.8CVSS7.4AI score0.02418EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.37 views

Ubuntu 18.04 ESM : Synapse vulnerabilities (USN-6076-1)

The remote Ubuntu 18.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6076-1 advisory. It was discovered that Synapse incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input...

9.8CVSS7.6AI score0.02418EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.24 views

Fedora 28 : matrix-synapse (2018-f513267ac5)

Update to latest upstream Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

7.5CVSS7.4AI score0.0151EPSS
Exploits0References2
OSV
OSV
added 2018/05/02 4:29 p.m.16 views

CVE-2018-10657

Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 2^63 - 1 render rooms unusable, related to federation/federationbase.py and handlers/message.py, as exploited in the wild in April 2018...

7.5CVSS7.6AI score
Exploits0References2
Debian CVE
Debian CVE
added 2018/05/02 4:0 p.m.24 views

CVE-2018-10657

Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 2^63 - 1 render rooms unusable, related to federation/federationbase.py and handlers/message.py, as exploited in the wild in April 2018...

7.5CVSS7.4AI score0.0151EPSS
Exploits0
CVE
CVE
added 2018/05/02 4:0 p.m.67 views

CVE-2018-10657

Matrix Synapse before 0.28.1 is vulnerable to a denial-of-service (DoS) flaw triggered by specially crafted events with depth = 2^63 − 1, rendering rooms unusable. The issue is tied to federation/federation_base.py and handlers/message.py. Exploitation was observed in the wild in April 2018. Reme...

7.5CVSS7.2AI score0.0151EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder