CVE-2018-10657

EPSS 0.43% · P63 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-10657

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 2^63 - 1 render rooms unusable, related to federation/federation_base.py and handlers/message.py, as exploited in the wild in April 2018.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Matrix Synapse 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Matrix是一套开放式通信网络。Synapse是其中的一个服务器实现。 Matrix Synapse 0.28.1之前版本中存在拒绝服务漏洞。攻击者可借助‘depth’值利用该漏洞造成拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-10657

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-10657

Please Login to view more intelligence information

https://github.com/matrix-org/synapse/commit/33f469ba19586bbafa0cf2c7d7c35463bdab87ebx_refsource_CONFIRM
https://matrix.org/blog/2018/05/01/security-update-synapse-0-28-1/x_refsource_CONFIRM
https://nvd.nist.gov/vuln/detail/CVE-2018-10657

Same Patch Batch · n/a · 2018-05-02 · 49 CVEs total

CVE-2018-10677		MiniUPnP ngiflib 缓冲区错误漏洞
CVE-2018-10676		多款DVR设备安全漏洞
CVE-2013-6272		Android 安全漏洞
CVE-2018-10642		Combodo iTop 命令注入漏洞
CVE-2018-10645		Golden Frog VyprVPN for Windows 权限许可和访问控制问题漏洞
CVE-2018-10646		CyberGhost for Windows 权限许可和访问控制问题漏洞
CVE-2018-10647		SaferVPN for Windows 安全漏洞
CVE-2018-6401		Meross MSS110 TELNET listener 安全漏洞
CVE-2018-10544		Meross MSS110 安全漏洞
CVE-2018-10680		Z-BlogPHP 跨站脚本漏洞
CVE-2018-10675		Linux kernel 资源管理错误漏洞
CVE-2018-9919		Tp-shop 安全漏洞
CVE-2018-8900		Gemalto HASP SRM、Sentinel HASP和Sentinel LDK 跨站脚本漏洞
CVE-2018-10578		WatchGuard AP100、AP102和AP200 安全漏洞
CVE-2018-10577		多款WatchGuard产品安全漏洞
CVE-2018-10568		Flexense DiskSorter Enterprise 跨站脚本漏洞
CVE-2018-10567		Flexense VX Search Enterprise 跨站脚本漏洞
CVE-2018-10566		Flexense DupScout Enterprise 跨站脚本漏洞
CVE-2018-10565		Flexense DiskSavvy Enterprise 跨站脚本漏洞
CVE-2018-10564		Flexense DiskPulse Enterprise 跨站脚本漏洞

Showing top 20 of 49 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-10657

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-10657

I. Basic Information for CVE-2018-10657

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-10657

III. Intelligence Information for CVE-2018-10657

Same Patch Batch · n/a · 2018-05-02 · 49 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-10657

Leave a comment