Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, in federated rooms, malicious homeservers can craft room events in such a way that prevents Synapse from providing full history to paginating clients. Clients could therefore fail to display room history. This vulnerability is fixed in 1.152.1.
oryginał ENCVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XElement Synapse
APPElement< 1.152.1
Powiązane podatności
Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can ca...
Element Android is an Android Matrix Client. Element Android version 1.4.3 through 1.6.10 is vulnerable to int...
Element Desktop is a Matrix client for desktop platforms with Element Web at its core. Element Desktop before ...
Element Android is an Android Matrix Client provided by Element. Element Android up to version 1.6.32 can, und...
Element Android is an Android Matrix Client. A third-party malicious application installed on the same phone c...