CVE-2020-26257

EPSS 0.66%
Published 09.12.2020 19:15:11
Last modified 21.11.2024 05:19:40
Source security-advisories@github.com
Teams watchlist Login
Open Login

Matrix is an ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix. A malicious or poorly-implemented homeserver can inject malformed events into a room by specifying a different room id in the path of a `/send_join`, `/send_leave`, `/invite` or `/exchange_third_party_invite` request. This can lead to a denial of service in which future events will not be correctly sent to other servers over federation. This affects any server which accepts federation requests from untrusted servers. The Matrix Synapse reference implementation before version 1.23.1 the implementation is vulnerable to this injection attack. Issue is fixed in version 1.23.1. As a workaround homeserver administrators could limit access to the federation API to trusted servers (for example via `federation_domain_whitelist`).

Affected products Warnungen 0 Metrics 4 CWE 2 References 9

Data is provided by the National Vulnerability Database (NVD)

Matrix ≫ Synapse Version < 1.23.1

Fedoraproject ≫ Fedora Version32

Fedoraproject ≫ Fedora Version33

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.66%	0.702

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	4	8	2.9	AV:N/AC:L/Au:S/C:N/I:N/A:P
security-advisories@github.com	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

https://github.com/matrix-org/synapse/blob/develop/CHANGES.md#synapse-1231-2020-12-09

Third Party Advisory

Release Notes

https://github.com/matrix-org/synapse/commit/3ce2f303f15f6ac3dc352298972dc6e04d9b7a8b

Patch

Third Party Advisory

https://github.com/matrix-org/synapse/pull/8776

Patch

Third Party Advisory

https://github.com/matrix-org/synapse/security/advisories/GHSA-hxmp-pqch-c8mm

Third Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DBTIU3ZNBFWZ56V4X7JIAD33V5H2GOMC/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QR4MMYZKX5N5GYGH4H5LBUUC5TLAFHI7/

https://nvd.nist.gov/vuln/detail/CVE-2020-26257

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-26257

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-26257

EUVD