SecuritySpace - CVE-2018-12291

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2018-12291

Description: The on_get_missing_events function in handlers/federation.py in Matrix Synapse before 0.31.1 has a security bug in the get_missing_events federation API where event visibility rules were not applied correctly.

Test IDs: 1.3.6.1.4.1.25623.1.0.874733 1.3.6.1.4.1.25623.1.0.874725 1.3.6.1.4.1.25623.1.0.852084

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2018-12291

CVE ID:	CVE-2018-12291
Description:	The on_get_missing_events function in handlers/federation.py in Matrix Synapse before 0.31.1 has a security bug in the get_missing_events federation API where event visibility rules were not applied correctly.
Test IDs:	1.3.6.1.4.1.25623.1.0.874733 1.3.6.1.4.1.25623.1.0.874725 1.3.6.1.4.1.25623.1.0.852084
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2018-12291