Lucene search
K

1191 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.18 views

Linux Distros Unpatched Vulnerability : CVE-2026-45078

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and le...

6.8CVSS5.5AI score0.00128EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 12:0 a.m.6 views

OPENSUSE-SU-2026:10898-1 matrix-synapse-1.153.0-2.1 on GA media

These are all security issues fixed in the matrix-synapse-1.153.0-2.1 package on the GA media of openSUSE Tumbleweed...

6.8CVSS5.8AI score0.00369EPSS
Exploits0References2
PyPA
PyPA
added 2026/05/28 5:16 p.m.8 views

PYSEC-0000-CVE-2026-45078

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing other users to be denied service. This vulnerability is fixed in 1.152.1...

6.8CVSS5.8AI score0.00128EPSS
Exploits0References1Affected Software1
PyPA
PyPA
added 2026/05/28 5:16 p.m.9 views

PYSEC-0000-CVE-2026-45076

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, in federated rooms, malicious homeservers can craft room events in such a way that prevents Synapse from providing full history to paginating clients. Clients could therefore fail to display room history. This...

5.1CVSS5.4AI score0.00369EPSS
Exploits0References1Affected Software1
vulnersOsv
vulnersOsv
added 2026/05/28 5:16 p.m.4 views

raiden (>=0.100.2 <=0.100.3rc1) potentially affected by CVE-2026-45076 via matrix-synapse (=0.33.9)

matrix-synapse PYPI version =0.33.9 is affected by a known vulnerability. The following packages have a transitive dependency on matrix-synapse and may be impacted: - raiden =0.100.2, =0.100.3rc1 Source cves: CVE-2026-45076 Source advisory: OSV:PYSEC-2026-194...

5.1CVSS5.4AI score0.00369EPSS
Exploits0
NVD
NVD
added 2026/05/28 5:16 p.m.18 views

CVE-2026-45076

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, in federated rooms, malicious homeservers can craft room events in such a way that prevents Synapse from providing full history to paginating clients. Clients could therefore fail to display room history. This...

5.1CVSS0.00369EPSS
Exploits0References1
NVD
NVD
added 2026/05/28 5:16 p.m.20 views

CVE-2026-45078

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing other users to be denied service. This vulnerability is fixed in 1.152.1...

6.8CVSS0.00128EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/05/28 5:16 p.m.5 views

raiden (>=0.100.2 <=0.100.3rc1) potentially affected by CVE-2026-45078 via matrix-synapse (=0.33.9)

matrix-synapse PYPI version =0.33.9 is affected by a known vulnerability. The following packages have a transitive dependency on matrix-synapse and may be impacted: - raiden =0.100.2, =0.100.3rc1 Source cves: CVE-2026-45078 Source advisory: OSV:PYSEC-2026-191...

6.8CVSS5.4AI score0.00128EPSS
Exploits0
OSV
OSV
added 2026/05/28 5:16 p.m.8 views

DEBIAN-CVE-2026-45076

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, in federated rooms, malicious homeservers can craft room events in such a way that prevents Synapse from providing full history to paginating clients. Clients could therefore fail to display room history. This...

2.7CVSS5.8AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2026/05/28 5:16 p.m.6 views

DEBIAN-CVE-2026-45078

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing other users to be denied service. This vulnerability is fixed in 1.152.1...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References1
PyPA
PyPA
added 2026/05/28 5:16 p.m.13 views

PYSEC-2026-191

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing other users to be denied service. This vulnerability is fixed in 1.152.1...

6.8CVSS5.8AI score0.00128EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/05/28 5:16 p.m.8 views

PYSEC-2026-191

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing other users to be denied service. This vulnerability is fixed in 1.152.1...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References1
PyPA
PyPA
added 2026/05/28 5:16 p.m.7 views

PYSEC-2026-194

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, in federated rooms, malicious homeservers can craft room events in such a way that prevents Synapse from providing full history to paginating clients. Clients could therefore fail to display room history. This...

5.1CVSS5.4AI score0.00369EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/05/28 5:16 p.m.7 views

PYSEC-2026-194

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, in federated rooms, malicious homeservers can craft room events in such a way that prevents Synapse from providing full history to paginating clients. Clients could therefore fail to display room history. This...

2.7CVSS5.4AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2026/05/28 5:16 p.m.6 views

UBUNTU-CVE-2026-45078

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing other users to be denied service. This vulnerability is fixed in 1.152.1...

6.8CVSS5.8AI score0.00128EPSS
Exploits0References3
OSV
OSV
added 2026/05/28 5:16 p.m.7 views

UBUNTU-CVE-2026-45076

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, in federated rooms, malicious homeservers can craft room events in such a way that prevents Synapse from providing full history to paginating clients. Clients could therefore fail to display room history. This...

5.1CVSS5.8AI score0.00369EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/28 3:52 p.m.8 views

CVE-2026-45078

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing other users to be denied service. This vulnerability is fixed in 1.152.1...

6.8CVSS5.8AI score0.00128EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/05/28 3:52 p.m.21 views

CVE-2026-45078

CVE-2026-45078 — Synapse CPU starvation (Denial of Service) Affected: Synapse (open source Matrix homeserver) before version 1.152.1. Issue: Local authenticated users can cause CPU starvation among concurrent requests, leading to other requests failing and denial of service for other users. Impac...

6.8CVSS5.8AI score0.00128EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/28 3:52 p.m.12 views

CVE-2026-45078 Synapse CPU starvation (Denial of Service)

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing other users to be denied service. This vulnerability is fixed in 1.152.1...

6.8CVSS5.8AI score0.00128EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/28 3:52 p.m.34 views

CVE-2026-45078 Synapse CPU starvation (Denial of Service)

Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing other users to be denied service. This vulnerability is fixed in 1.152.1...

6.8CVSS0.00128EPSS
Exploits0References1
Rows per page
Query Builder