Vulnerabilities > Matrix > Synapse > 1.91.2

DATE CVE VULNERABILITY TITLE RISK
2023-10-31 CVE-2023-43796 Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse.
network
low complexity
matrix fedoraproject
5.3
5.3
2023-10-10 CVE-2023-45129 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation.
network
low complexity
matrix fedoraproject CWE-770
4.9
4.9
2023-09-27 CVE-2023-41335 Cleartext Storage of Sensitive Information vulnerability in multiple products
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation.
network
high complexity
matrix fedoraproject CWE-312
3.7
3.7
2023-09-27 CVE-2023-42453 Improper Authorization vulnerability in multiple products
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation.
network
low complexity
matrix fedoraproject CWE-285
4.3
4.3