ID CVE-2018-12291
Summary The on_get_missing_events function in handlers/federation.py in Matrix Synapse before 0.31.1 has a security bug in the get_missing_events federation API where event visibility rules were not applied correctly.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
refmap via4
confirm
Last major update 13-06-2018 - 10:29
Published 13-06-2018 - 10:29
Last modified 13-06-2018 - 10:29
Back to Top