CVE-2021-41281Path Traversal in Synapse

CWE-22Path Traversal6 documents5 sources
Severity
7.5HIGHNVD
EPSS
0.5%
top 32.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Matrix-org SynapseMatrix SynapseFedoraproject Fedora
Timeline
PublishedNov 23

Description

Synapse is a package for Matrix homeservers written in Python 3/Twisted. Prior to version 1.47.1, Synapse instances with the media repository enabled can be tricked into downloading a file from a remote server into an arbitrary directory. No authentication is required for the affected endpoint. The last 2 directories and file name of the path are chosen randomly by Synapse and cannot be controlled by an attacker, which limits the impact. Homeservers with the media repository disabled are unaffec

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

NVDmatrix/synapse< 1.47.1
CVEListV5matrix-org/synapse< 1.47.1

Also affects: Fedora 34, 35

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

4
CVEList
Path traversal in Matrix Synapse2021-11-23
GHSA
Path traversal in Matrix Synapse2021-11-23
OSV
CVE-2021-41281: Synapse is a package for Matrix homeservers written in Python 3/Twisted2021-11-23
OSV
Path traversal in Matrix Synapse2021-11-23

📋Vendor Advisories

1
Debian
CVE-2021-41281: matrix-synapse - Synapse is a package for Matrix homeservers written in Python 3/Twisted. Prior t...2021
CVE-2021-41281 — Path Traversal in Matrix-org Synapse | cvebase