Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2023/06/16 12:0 a.m.18 views

Fedora 38 : matrix-synapse (2023-56760afca8)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-56760afca8 advisory. Update to v1.85.2 ---- Update to v1.85.1 ---- Update to v1.85.0 Fixes CVE-2023-32682, CVE-2023-32683 ---- Update to v1.84.1 Tenable has extracted th...

5.4CVSS6.2AI score0.00752EPSS
Exploits0References3
NVD
NVD
added 2023/06/06 7:15 p.m.48 views

CVE-2023-32682

Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. In affected versions it may be possible for a deactivated user to login when using uncommon configurations. This only applies if any of the following are true: 1. JSON Web Tokens are enabled for login via the...

5.4CVSS5.4AI score0.00752EPSS
Exploits0References7
vulnersOsv
vulnersOsv
added 2023/06/06 7:15 p.m.8 views

matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.84.1.0) +7 more potentially affected by CVE-2023-32682 via matrix-synapse (>=0.33.9 <=1.84.1)

matrix-synapse PYPI version =0.33.9, =0.1.1, =1.65.0.0, =0.1.2, =0.100.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2023-32682 Source advisory: OSV:PYSEC-2023-84...

5.4CVSS6AI score0.00752EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2023/06/06 7:15 p.m.32 views

CVE-2023-32682

Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. In affected versions it may be possible for a deactivated user to login when using uncommon configurations. This only applies if any of the following are true: 1. JSON Web Tokens are enabled for login via the...

5.4CVSS6.1AI score0.00752EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/06/06 6:20 p.m.11 views

CVE-2023-32682 Improper checks for deactivated users during login in synapse

Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. In affected versions it may be possible for a deactivated user to login when using uncommon configurations. This only applies if any of the following are true: 1. JSON Web Tokens are enabled for login via the...

5.4CVSS5.4AI score0.00752EPSS
Exploits0References7
Cvelist
Cvelist
added 2023/06/06 6:20 p.m.54 views

CVE-2023-32682 Improper checks for deactivated users during login in synapse

Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. In affected versions it may be possible for a deactivated user to login when using uncommon configurations. This only applies if any of the following are true: 1. JSON Web Tokens are enabled for login via the...

5.4CVSS5.6AI score0.00752EPSS
Exploits0References7
AlpineLinux
AlpineLinux
added 2023/06/06 6:20 p.m.20 views

CVE-2023-32682

Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. In affected versions it may be possible for a deactivated user to login when using uncommon configurations. This only applies if any of the following are true: 1. JSON Web Tokens are enabled for login via the...

5.4CVSS5.4AI score0.00752EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2023/06/06 4:40 p.m.3 views

matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.84.1.0) +7 more potentially affected by CVE-2023-32682 via matrix-synapse (>=0.33.9 <=1.84.1)

matrix-synapse PYPI version =0.33.9, =0.1.1, =1.65.0.0, =0.1.2, =0.100.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2023-32682 Source advisory: OSV:GHSA-26C5-PPR8-F33P...

5.4CVSS6AI score0.00752EPSS
Exploits0
Rows per page
Query Builder