Lucene search
China National Vulnerability DatabaseCNVD-2022-60674HistoryJun 30, 2022 - 12:00 a.m.
Matrix Synapse Denial of Service Vulnerability (CNVD-2022-60674)
2022-06-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
15
matrix synapse
denial of service
vulnerability
infinite recursion
url previews
stack space
synapse process
attack
cnvd-2022-60674
EPSS
0.001
Percentile
49.1%
Matrix Synapse is a Matrix Management Server implementation from the Matrix Foundation in the U.K. A denial of service vulnerability exists in versions of Matrix Synapse prior to 1.61.1, which stems from infinite recursion, where URL previews of certain web pages may exhaust the available stack space of the Synapse process. An attacker could exploit this vulnerability to cause a denial of service attack.
Related
openvas
openvas
Fedora: Security Advisory for matrix-synapse (FEDORA-2022-45bf6d4b88)
2022-07-09 00:00:00
Fedora: Security Advisory for matrix-synapse (FEDORA-2022-1a2312e4d6)
2022-07-09 00:00:00
cve
cve
CVE-2022-31052
2022-06-28 17:15:08
fedora
fedora
[SECURITY] Fedora 35 Update: matrix-synapse-1.61.1-1.fc35
2022-07-08 01:37:52
[SECURITY] Fedora 36 Update: matrix-synapse-1.61.1-1.fc36
2022-07-08 01:17:36
osv
osv
matrix-synapse-1.61.1-1.1 on GA media
2024-06-15 00:00:00
PYSEC-2022-224
2022-06-28 17:15:00
CVE-2022-31052
2022-06-28 17:15:08
nvd
nvd
CVE-2022-31052
2022-06-28 17:15:08
nessus
nessus
freebsd
freebsd
py-matrix-synapse -- unbounded recursion in urlpreview
2022-06-28 00:00:00
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2022-31052
2022-06-28 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-06-29 11:53:55
prion
prion
Design/Logic Flaw
2022-06-28 17:15:00
alpinelinux
alpinelinux
CVE-2022-31052
2022-06-28 17:15:08
debiancve
debiancve
CVE-2022-31052
2022-06-28 17:15:08
github
github