pkg:PyPI/matrix-sydent

All known vulnerabilities

• CRITICAL9.3CVE-2023-38686Sydent does not verify email server certificates
  from 0, < 2.5.6
• CRITICAL9.3CVE-2023-38686Sydent does not verify email server certificates
  from 0, < 1cd748307c6b168b66154e6c4db715d4b9551261 | from 0, < 2.5.6
• HIGH7.7CVE-2021-29431SSRF in Sydent due to missing validation of hostnames
  from 0, < 2.3.0
• HIGH7.7CVE-2021-29431SSRF in Sydent due to missing validation of hostnames
  from 0, < 3d531ed50d2fd41ac387f36d44d3fb2c62dd22d3, < 0f00412017f25619bc36c264b29ea96808bf310a, < 9e573348d81df8191bbe8c266c01999c9d57cd5f, < 8936925f561b0c352c2fa922d5097d7245aad00a | from 0, < 2.3.0
• HIGH7.5CVE-2019-11842matrix-sydent and matrix-synapse Use Cryptographically Weak PRNG
  from 0, < 1.0.3
• HIGH7.5CVE-2021-29430Sydent vulnerable to denial of service attack via memory exhaustion
  from 0, < 2.3.0
• HIGH7.5CVE-2021-29430Sydent vulnerable to denial of service attack via memory exhaustion
  from 0, < 0523511d2fb40f2738f8a8549868f44b96e5dab7, < 89071a1a754c69a50deac89e6bb74002d4cda19d, < f56eee315b6c44fdd9f6aa785cc2ec744a594428 | from 0, < 2.3.0
• MEDIUM5.9CVE-2019-11340Matrix Sydent mishandles emails
  from 0, < 1.0.2
• MEDIUM5.3CVE-2021-29432Malicious users could abuse Sydent to control the content of invitation emails
  from 0, < 2.3.0
• MEDIUM5.3CVE-2021-29432Malicious users could abuse Sydent to control the content of invitation emails
  from 0, < 4469d1d42b2b1612b70638224c07e19623039c42 | from 0, < 2.3.0
• MEDIUM4.3CVE-2021-29433Sydent DoS (via resource exhaustion) due to improper input validation
  from 0, < 2.3.0
• MEDIUM4.3CVE-2021-29433Sydent DoS (via resource exhaustion) due to improper input validation
  from 0, < 2.3.0