Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Synapse allows unsupported content types to lead to memory exhaustion
Vulnerability Description
Synapse is an open-source Matrix homeserver. In Synapse before 1.120.1, multipart/form-data requests can in certain configurations transiently increase memory consumption beyond expected levels while processing the request, which can be used to amplify denial of service attacks. Synapse 1.120.1 resolves the issue by denying requests with unsupported multipart/form-data content type.
CVSS Information
N/A
Vulnerability Type
不加限制或调节的资源分配
Vulnerability Title
Element Synapse 安全漏洞
Vulnerability Description
Element Synapse是Element开源的一个开源 Matrix 家庭服务器实现。 Element Synapse存在安全漏洞,该漏洞源于多部分/表单数据请求在某些配置下可能会在处理请求时暂时增加超出预期水平的内存消耗。
CVSS Information
N/A
Vulnerability Type
N/A