Lucene search
K

4 matches found

Ubuntu
Ubuntu
added 2023/05/16 7:45 a.m.43 views

USN-6076-1: Synapse vulnerabilities

It was discovered that Synapse incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. CVE-2019-18835, CVE-2018-12291, CVE-2018-10657 It was...

9.8CVSS7.4AI score0.02418EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.37 views

Ubuntu 18.04 ESM : Synapse vulnerabilities (USN-6076-1)

The remote Ubuntu 18.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6076-1 advisory. It was discovered that Synapse incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input...

9.8CVSS7.6AI score0.02418EPSS
Exploits0References8
CVE
CVE
added 2019/11/07 11:12 p.m.186 views

CVE-2019-18835

CVE-2019-18835 affects Matrix Synapse prior to 1.5.0. The root cause is improper signature verification on federation APIs; events sent over /send_join, /send_leave, and /invite may not be correctly signed or may not originate from the expected servers. This can allow spoofing or impersonation of...

9.8CVSS9.3AI score0.00864EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/11/07 11:12 p.m.27 views

CVE-2019-18835

Matrix Synapse before 1.5.0 mishandles signature checking on some federation APIs. Events sent over /sendjoin, /sendleave, and /invite may not be correctly signed, or may not come from the expected servers...

9.5AI score0.00864EPSS
Exploits0References2
Rows per page
Query Builder