CVE-2018-16515

Published September 18th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

6.5

MEDIUM

Affected

PROJECT

Description

Matrix Synapse before 0.33.3.1 allows remote attackers to spoof events and possibly have unspecified other impacts by leveraging improper transaction and event signature validation.

matrix-org/synapse

Synapse: Matrix homeserver written in Python/Twisted.

GitHub

12.1K