347 matches found
EUVD-2022-5380
Malicious code in bioql PyPI...
EUVD-2022-3811
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-21392
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is a Matrix reference homeserver written in python pypi package matrix-synapse. Matrix is an ecosystem for open federated Instant Messaging and VoIP. In...
Linux Distros Unpatched Vulnerability : CVE-2020-26891
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AuthRestServlet in Matrix Synapse before 1.21.0 is vulnerable to XSS due to unsafe interpolation of the session GET parameter. This allows a remote attacker to...
Linux Distros Unpatched Vulnerability : CVE-2021-21394
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is a Matrix reference homeserver written in python pypi package matrix-synapse. Matrix is an ecosystem for open federated Instant Messaging and VoIP. In...
Linux Distros Unpatched Vulnerability : CVE-2020-26257
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Matrix is an ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference homeserver implementation of Matrix. A malicious or...
Linux Distros Unpatched Vulnerability : CVE-2020-26890
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Matrix Synapse before 1.20.0 erroneously permits non-standard NaN, Infinity, and -Infinity JSON values in fields of m.room.member events, allowing remote...
Linux Distros Unpatched Vulnerability : CVE-2023-42453
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Users were able to forge read receipts for any event if they kn...
matrix-synapse-1.137.0-1.1 on GA media (moderate)
matrix-synapse-1.137.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:15493-1 Rating: moderate Cross-References: CVE-2025-8714 CVSS scores: CVE-2025-8714 SUSE : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2025-8714 SUSE : 8.7...
OPENSUSE-SU-2025:15493-1 matrix-synapse-1.137.0-1.1 on GA media
These are all security issues fixed in the matrix-synapse-1.137.0-1.1 package on the GA media of openSUSE Tumbleweed...
Fedora 41 : matrix-synapse (2025-a257fc1a8f)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-a257fc1a8f advisory. Update to v1.136.0 ---- Update to 1.135.2 ---- Update to 1.135.0 Tenable has extracted the preceding description block directly from the Fedora security...
Fedora: Security Advisory (FEDORA-2025-a257fc1a8f)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux Distros Unpatched Vulnerability : CVE-2021-21274
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is a Matrix reference homeserver written in python pypi package matrix-synapse. Matrix is an ecosystem for open federated Instant Messaging and VoIP. In...
Fedora 42 : matrix-synapse (2025-9e0e3043af)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-9e0e3043af advisory. Update to 1.135.2 ---- Update to 1.135.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
matrix-synapse-1.136.0-1.1 on GA media (moderate)
matrix-synapse-1.136.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:15436-1 Rating: moderate Cross-References: CVE-2025-49090 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
[SECURITY] Fedora 42 Update: matrix-synapse-1.135.2-1.fc42
Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...
OPENSUSE-SU-2025:15436-1 matrix-synapse-1.136.0-1.1 on GA media
These are all security issues fixed in the matrix-synapse-1.136.0-1.1 package on the GA media of openSUSE Tumbleweed...
Fedora: Security Advisory (FEDORA-2025-9e0e3043af)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux Distros Unpatched Vulnerability : CVE-2023-45129
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Prior to version 1.94.0, a malicious server ACL event can impac...
Fedora: Security Advisory (FEDORA-2024-4cadba7a29)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...