An issue exists in Matrix Sydent prior to 1.0.3 and Synapse prior to 0.99.3.1. Random number generation is mishandled, which makes it easier for malicious users to predict a Sydent authentication token or a Synapse random ID.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
matrix synapse |
||
matrix sydent |