vulnerability
FreeBSD: VID-1AFE9552-5EE3-11EA-9B6D-901B0E934D69: py-matrix-synapse -- users of single-sign-on are vulnerable to phishing
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:C/I:N/A:N) | 03/03/2020 | 03/12/2020 | 02/19/2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:C/I:N/A:N)
Published
03/03/2020
Added
03/12/2020
Modified
02/19/2025
Description
Matrix developers report:
[The 1.11.1] release includes a security fix impacting installations using Single Sign-On (i.e. SAML2 or CAS) for authentication. Administrators of such installations are encouraged to upgrade as soon as possible.
Solution(s)
freebsd-upgrade-package-py35-matrix-synapsefreebsd-upgrade-package-py36-matrix-synapsefreebsd-upgrade-package-py37-matrix-synapse
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.