Vulnerability Details : CVE-2022-39335
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. The Matrix Federation API allows remote homeservers to request the authorization events in a room. This is necessary so that a homeserver receiving some events can validate that those events are legitimate and permitted in their room. However, in versions of Synapse up to and including 1.68.0, a Synapse homeserver answering a query for authorization events does not sufficiently check that the requesting server should be able to access them. The issue was patched in Synapse 1.69.0. Homeserver administrators are advised to upgrade.
Vulnerability category: Information leak
Products affected by CVE-2022-39335
- cpe:2.3:a:matrix:synapse:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-39335
0.11%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 45 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-39335
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L |
1.6
|
3.4
|
NIST | |
5.0
|
MEDIUM | CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L |
1.6
|
3.4
|
GitHub, Inc. |
CWE ids for CVE-2022-39335
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: security-advisories@github.com (Primary)
-
The product does not perform an authorization check when an actor attempts to access a resource or perform an action.Assigned by: nvd@nist.gov (Secondary)
References for CVE-2022-39335
-
https://github.com/matrix-org/synapse/security/advisories/GHSA-45cj-f97f-ggwv
Synapse does not apply enough checks to servers requesting auth events of events in a room · Advisory · matrix-org/synapse · GitHubMitigation;Vendor Advisory
-
https://github.com/matrix-org/synapse/pull/13823
Faster Remote Room Joins: tell remote homeservers that we are unable to authorise them if they query a room which has partial state on our server. by reivilibre · Pull Request #13823 · matrix-org/synaPatch
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T2MBNMZAFY4RCZL2VGBGAPKGB4JUPZVS/
[SECURITY] Fedora 37 Update: matrix-synapse-1.63.1-3.fc37 - package-announce - Fedora Mailing-Lists
-
https://github.com/matrix-org/synapse/issues/13288
Faster joins: incoming federation requests during resync may be incorrectly rejected · Issue #13288 · matrix-org/synapse · GitHubIssue Tracking
Jump to