Lucene search

GitHub_MCVELIST:CVE-2023-38700

HistoryAug 04, 2023 - 6:05 p.m.

CVE-2023-38700 matrix-appservice-irc events can be crafted to leak parts of targeted messages from other bridged rooms

2023-08-0418:05:43

CWE-200

GitHub_M

www.cve.org

cve-2023-38700

matrix-appservice-irc

node.js irc bridge

targeted message

event leak

security vulnerability

version 1.0.1n

workaround

performance impact

CVSS3

3.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

AI Score

4.4

Confidence

High

EPSS

0.001

Percentile

35.0%

JSON

matrix-appservice-irc is a Node.js IRC bridge for Matrix. Prior to version 1.0.1, it was possible to craft an event such that it would leak part of a targeted message event from another bridged room. This required knowing an event ID to target. Version 1.0.1n fixes this issue. As a workaround, set the matrixHandler.eventCacheSize config value to 0. This workaround may impact performance.

CNA Affected

[
  {
    "vendor": "matrix-org",
    "product": "matrix-appservice-irc",
    "versions": [
      {
        "version": "< 1.0.1",
        "status": "affected"
      }
    ]
  }
]

References

github.com/matrix-org/matrix-appservice-irc/commit/8bbd2b69a16cbcbeffdd9b5c973fd89d61498d75

github.com/matrix-org/matrix-appservice-irc/releases/tag/1.0.1

github.com/matrix-org/matrix-appservice-irc/security/advisories/GHSA-c7hh-3v6c-fj4q

CVSS3

3.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

AI Score

4.4

Confidence

High

EPSS

0.001

Percentile

35.0%

JSON

Related for CVELIST:CVE-2023-38700