Linux Distros Unpatched Vulnerability : CVE-2022-39335

🗓️ 27 Aug 2025 00:00:00Reported by TenableType

Synapse up to 1.68.0 allows unauthorized access to federation authorization events; upgrade to 1.69.0.

Reporter	Title	Published	Views	Family All 37
AlpineLinux	CVE-2022-39335	26 May 202313:36	–	alpinelinux
CNNVD	Matrix Synapse 信息泄露漏洞	26 May 202300:00	–	cnnvd
CVE	CVE-2022-39335	26 May 202313:36	–	cve
Cvelist	CVE-2022-39335 Synapse does not apply enough checks to servers requesting auth events of events in a room	26 May 202313:36	–	cvelist
Debian CVE	CVE-2022-39335	26 May 202313:36	–	debiancve
EUVD	EUVD-2023-0137	3 Oct 202520:07	–	euvd
Fedora	[SECURITY] Fedora 37 Update: matrix-synapse-1.63.1-3.fc37	11 Jun 202301:59	–	fedora
Tenable Nessus	Fedora 37 : matrix-synapse / python-matrix-common / rust-pythonize (2023-c0696d7b53)	18 Sep 202300:00	–	nessus
Tenable Nessus	Fedora 37 : matrix-synapse (2023-eb65439ec0)	12 Jun 202300:00	–	nessus
Tenable Nessus	Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Synapse vulnerabilities (USN-7444-1)	23 Apr 202500:00	–	nessus

Source	Link
ubuntu	www.ubuntu.com/security/CVE-2022-39335
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(257230);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/10/28");

  script_cve_id("CVE-2022-39335");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2022-39335");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. The
    Matrix Federation API allows remote homeservers to request the authorization events in a room. This is
    necessary so that a homeserver receiving some events can validate that those events are legitimate and
    permitted in their room. However, in versions of Synapse up to and including 1.68.0, a Synapse homeserver
    answering a query for authorization events does not sufficiently check that the requesting server should
    be able to access them. The issue was patched in Synapse 1.69.0. Homeserver administrators are advised to
    upgrade. (CVE-2022-39335)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2022-39335");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-39335");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/05/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/27");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:matrix-synapse");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/Ubuntu Linux-18.04", "Host/OS/Ubuntu Linux-20.04");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Ubuntu Linux-18.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "18.04",
        "pkgs": [
          {"reference": "matrix-synapse"}
        ]
      }
    ]
  },
  "Ubuntu Linux-20.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "20.04",
        "pkgs": [
          {"reference": "matrix-synapse"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}

28 Oct 2025 00:00Current

6Medium risk

Vulners AI Score6

CVSS 3.15

EPSS0.00138

SSVC