NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-45078

Summary	Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing other users to be denied service. This vulnerability is fixed in 1.152.1.
Publication Date	May 29, 2026, 2:16 a.m.
Registration Date	May 29, 2026, 4:15 a.m.
Last Update	May 29, 2026, 3:03 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/element-hq/synapse/security/advisories/GHSA-8q93-326v-3m7g	security-advisories@github.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-770	制限またはスロットリング無しのリソースの割り当て	https://cwe.mitre.org/data/definitions/770.html