All 5 CVE vulnerabilities found in sydent, with AI-generated Chinese analysis, references, and POCs.
Vendor: matrix-org
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-38686 | Sydent does not verify email server certificates CWE-295 | 9.3 | Critical | 2023-08-04 |
| CVE-2021-29431 | SSRF in Sydent due to missing validation of hostnames CWE-20 | 7.7 | High | 2021-04-15 |
| CVE-2021-29432 | Malicious users could control the content of invitation emails CWE-20 | 5.3 | Medium | 2021-04-15 |
| CVE-2021-29430 | Denial of service attack via memory exhaustion CWE-20 | 7.5 | High | 2021-04-15 |
| CVE-2021-29433 | Denial of service (via resource exhaustion) due to improper input validation CWE-20 | 4.3 | Medium | 2021-04-15 |
All 5 known CVE vulnerabilities affecting sydent with full Chinese analysis, references, and POCs where available.