Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2023/09/18 12:0 a.m.31 views

Fedora 37 : matrix-synapse / python-matrix-common / rust-pythonize (2023-c0696d7b53)

The remote Fedora 37 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-c0696d7b53 advisory. Update matrix-synapse to v1.80.0 to fix CVE-2022-39374, CVE-2023-32323 Tenable has extracted the preceding description block directly from the Fedor...

6.5CVSS5.9AI score0.00981EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/06/12 12:0 a.m.24 views

Fedora 37 : matrix-synapse (2023-eb65439ec0)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-eb65439ec0 advisory. Security fix for CVE-2022-39335 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

5CVSS6.1AI score0.00635EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/06/12 12:0 a.m.21 views

Fedora: Security Advisory for matrix-synapse (FEDORA-2023-eb65439ec0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.1AI score0.00635EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2023/05/26 2:15 p.m.6 views

matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.68.0.0) +7 more potentially affected by CVE-2022-39335 via matrix-synapse (>=0.33.9 <=1.68.0)

matrix-synapse PYPI version =0.33.9, =0.1.1, =1.65.0.0, =0.1.2, =0.100.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2022-39335 Source advisory: OSV:PYSEC-2023-65...

5CVSS6.2AI score0.00635EPSS
Exploits0
Debian CVE
Debian CVE
added 2023/05/26 1:36 p.m.28 views

CVE-2022-39335

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. The Matrix Federation API allows remote homeservers to request the authorization events in a room. This is necessary so that a homeserver receiving some events can validate that those events are...

5CVSS5.6AI score0.00635EPSS
Exploits0
CVE
CVE
added 2023/05/26 1:36 p.m.82 views

CVE-2022-39335

CVE-2022-39335 affects Synapse (Matrix homeserver). The issue: when a home server answers a query for authorization events via the Federation API, it does not sufficiently verify that the requesting server should access those events. This could enable access to authorization events in a room by u...

5CVSS5.1AI score0.00635EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/26 1:36 p.m.11 views

CVE-2022-39335 Synapse does not apply enough checks to servers requesting auth events of events in a room

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. The Matrix Federation API allows remote homeservers to request the authorization events in a room. This is necessary so that a homeserver receiving some events can validate that those events are...

5CVSS5.1AI score0.00635EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2023/05/26 1:36 p.m.20 views

CVE-2022-39335

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. The Matrix Federation API allows remote homeservers to request the authorization events in a room. This is necessary so that a homeserver receiving some events can validate that those events are...

5CVSS5.2AI score0.00635EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2023/05/26 12:0 a.m.27 views

CVE-2022-39335

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. The Matrix Federation API allows remote homeservers to request the authorization events in a room. This is necessary so that a homeserver receiving some events can validate that those events are...

5CVSS6.5AI score0.00635EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2023/05/24 5:20 p.m.5 views

matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.68.0.0) +7 more potentially affected by CVE-2022-39335 via matrix-synapse (>=0.33.9 <=1.68.0)

matrix-synapse PYPI version =0.33.9, =0.1.1, =1.65.0.0, =0.1.2, =0.100.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2022-39335 Source advisory: OSV:GHSA-45CJ-F97F-GGWV...

5CVSS6.2AI score0.00635EPSS
Exploits0
Rows per page
Query Builder