CVE-2025-30355 — Vulnetix

CVE-2025-30355 PUBLISHED CVSS 7.099999904632568 HIGH

Synapse vulnerable to federation denial of service via malformed events

EPSS 13.20% · 94.3th percentile

Risk Scores

CVSS v3.1

7.099999904632568

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

EPSS Score

13.20%

94.3th percentile

Affected Products

Vendor	Product	Versions
matrix	synapse	0
element-hq	synapse	< 1.127.1
PyPI	matrix-synapse	0

Timeline

Jan 21, 1970 Security Advisory
Mar 26, 2025 PoC Published
Mar 27, 2025 CVE Published
Mar 27, 2025 EPSS Score
Mar 27, 2025 Coalition ESS Score
Mar 28, 2025 Coalition ESS Score
Mar 28, 2025 PoC Published
Apr 9, 2025 EPSS Score
Apr 28, 2025 EPSS Score
May 5, 2025 EPSS Score
May 18, 2025 EPSS Score
May 31, 2025 EPSS Score

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›