matrix-synapse vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2018-16515Highmatrix-synapse: Matrix Synapse Improper Signature ValidationCVE-2018-12423Highmatrix-synapse: Matrix Synapse Authorization ErrorCVE-2018-12291Highmatrix-synapse: Matrix Synapse Security Filtering FlawCVE-2019-5885Highmatrix-synapse: Matrix Synapse Predictable Secret KeyCVE-2022-41952Mediummatrix-synapse: Uncontrolled Resource Consumption in Matrix SynapseCVE-2021-41281Highmatrix-synapse: Path traversal in Matrix SynapseCVE-2021-39163Lowmatrix-synapse: Adding a private/unlisted room to a community exposes room metadata in an unauthorised manner.CVE-2021-39164Lowmatrix-synapse: Improper authorisation of members discloses room membership to non-membersGHSA-7H5V-85W9-PQ6CMediummatrix-synapse: Denial of service (via resource exhaustion) due to improper input validation in third-party identifier endpointCVE-2021-29471Mediummatrix-synapse: Denial of service attack via push rule patterns in matrix-synapseCVE-2021-21392Highmatrix-synapse: Open redirect via transitional IPv6 addresses on dual-stack networksCVE-2021-21394Mediummatrix-synapse: Denial of service (via resource exhaustion) due to improper input validation on third-party identifier endpointsCVE-2021-21393Mediummatrix-synapse: Denial of service (via resource exhaustion) due to improper input validation on groups/communities endpointsCVE-2021-21333Mediummatrix-synapse: HTML injection in email and account expiry notificationsCVE-2021-21332Mediummatrix-synapse: Cross-site scripting (XSS) vulnerability in the password reset endpointCVE-2021-21274Mediummatrix-synapse: Denial of service attack via .well-known lookupsCVE-2021-21273Mediummatrix-synapse: Open redirects on some federation and push requestsCVE-2020-26257Highmatrix-synapse: Denial of service attack via incorrect parameters in Matrix SynapseCVE-2020-26890Highmatrix-synapse: Denial of service attack due to invalid JSONCVE-2020-26891Mediummatrix-synapse: Cross-site scripting (XSS) vulnerability in the fallback authentication endpoint

Stop the waste.
Protect your environment with Kodem.