Lucene search
+L

4 matches found

OSV
OSV
added 2023/06/06 7:15 p.m.4 views

DEBIAN-CVE-2023-32683

Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. A discovered oEmbed or image URL can bypass the urlpreviewurlblacklist setting potentially allowing server side request forgery or bypassing network policies. Impact is limited to IP addresses allowed by the...

5.4CVSS6.7AI score0.00605EPSS
Exploits0References1
OSV
OSV
added 2023/06/06 7:15 p.m.4 views

UBUNTU-CVE-2023-32683

Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. A discovered oEmbed or image URL can bypass the urlpreviewurlblacklist setting potentially allowing server side request forgery or bypassing network policies. Impact is limited to IP addresses allowed by the...

5.4CVSS6.4AI score0.00605EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/06/06 12:0 a.m.14 views

Matrix Synapse 代码问题漏洞

Matrix Synapse is a Matrix Management Server implementation from the Matrix Foundation in the UK. A code issue vulnerability exists in Matrix Synapse versions prior to 1.85.0 that stems from the urlpreviewurlblacklist setting that can be bypassed via oEmbed or URL...

5.4CVSS6.1AI score0.00605EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/06/06 12:0 a.m.8 views

PT-2023-23958 · Synapse +2 · Synapse +2

Name of the Vulnerable Software and Affected Versions: Synapse versions prior to 1.85.0 Description: A discovered oEmbed or image URL can bypass the url preview url blacklist setting, potentially allowing server-side request forgery or bypassing network policies. The impact is limited to IP...

8.2CVSS5.8AI score0.01463EPSS
Exploits0References36
Rows per page
Query Builder