NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-45076

Summary	Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, in federated rooms, malicious homeservers can craft room events in such a way that prevents Synapse from providing full history to paginating clients. Clients could therefore fail to display room history. This vulnerability is fixed in 1.152.1.
Publication Date	May 29, 2026, 2:16 a.m.
Registration Date	May 29, 2026, 4:15 a.m.
Last Update	May 29, 2026, 3:03 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/element-hq/synapse/security/advisories/GHSA-6qf2-7x63-mm6v	security-advisories@github.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-20	不適切な入力確認	https://cwe.mitre.org/data/definitions/20.html