CVE-2021-29453 : matrix-media-repo is an open-source multi-domain media repository for Matrix. Ve

matrix-media-repo is an open-source multi-domain media repository for Matrix. Versions 1.2.6 and earlier of matrix-media-repo do not properly handle malicious images which are crafted to be small in file size, but large in complexity. A malicious user could upload a relatively small image in terms of file size, using particular image formats, which expands to have extremely large dimensions during the process of thumbnailing. The server can be exhausted of memory in the process of trying to load the whole image into memory for thumbnailing, leading to denial of service. Version 1.2.7 has a fix for the vulnerability.

Published 2021-04-19 19:15:18

Updated 2022-08-03 10:18:45

Source GitHub, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2021-29453

Matrix-media-repo Project » Matrix-media-repo
Versions before (<) 1.2.7
cpe:2.3:a:matrix-media-repo_project:matrix-media-repo:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2021-29453

EPSS FAQ

0.14%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 48 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2021-29453

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.0	MEDIUM	AV:N/AC:L/Au:S/C:N/I:N/A:P	8.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	2.8	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
5.7	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H	2.1	3.6	GitHub, Inc.
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: Required Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2021-29453

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

Assigned by: security-advisories@github.com (Secondary)
CWE-770 Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2021-29453

https://hub.docker.com/r/turt2live/matrix-media-repo/tags?page=1&ordering=last_updated

turt2live/matrix-media-repo Tags
Third Party Advisory
https://github.com/turt2live/matrix-media-repo/security/advisories/GHSA-j889-h476-hh9h

Denial of service through memory exhaustion · Advisory · turt2live/matrix-media-repo · GitHub
Patch;Third Party Advisory
https://github.com/turt2live/matrix-media-repo/releases/tag/v1.2.7

Release v1.2.7 · turt2live/matrix-media-repo · GitHub
Release Notes;Third Party Advisory

Jump to

Vulnerability Details : CVE-2021-29453

Products affected by CVE-2021-29453

Exploit prediction scoring system (EPSS) score for CVE-2021-29453

CVSS scores for CVE-2021-29453

CWE ids for CVE-2021-29453

References for CVE-2021-29453