Lucene search

Veracode Vulnerability DatabaseVERACODE:43269

HistorySep 13, 2023 - 9:51 a.m.

Missing Authorization Checks

2023-09-1309:51:18

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

improper authentication

json web tokens

local password database

admin api

deactivated status

security vulnerability

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

48.0%

JSON

matrix_synapse is vulnerable to Improper Authentication. The vulnerability is due to the _complete_login function as It fails to verify the deactivated status of users during login. This only applies if any of the following are true: 1. JSON Web Tokens are enabled for login via the jwt_config.enabled configuration setting. 2. The local password database is enabled via the password_config.enabled and password_config.localdb_enabled configuration settings and a user’s password is updated via an admin API after a user is deactivated.

CPENameOperatorVersion
matrix-synapsele1.84.1
matrix-synapsele1.84.1

CPE	Name	Operator	Version
	matrix-synapse	le	1.84.1
	matrix-synapse	le	1.84.1

References

github.com/matrix-org/synapse/commit/7c9b91790c013d11ca88a9d01e0054939eda8523

github.com/matrix-org/synapse/pull/15624

github.com/matrix-org/synapse/pull/15634

github.com/matrix-org/synapse/security/advisories/GHSA-26c5-ppr8-f33p

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

48.0%

JSON

Related for VERACODE:43269