Skip to main content

Synapse CVE-2022-31052

MEDIUM
Uncontrolled Recursion (CWE-674)
2022-06-28 security-advisories@github.com
6.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.5 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
CVE Published
Jun 28, 2022 - 17:15 nvd
MEDIUM 6.5

DescriptionNVD

Synapse is an open source home server implementation for the Matrix chat network. In versions prior to 1.61.1 URL previews of some web pages can exhaust the available stack space for the Synapse process due to unbounded recursion. This is sometimes recoverable and leads to an error for the request causing the problem, but in other cases the Synapse process may crash altogether. It is possible to exploit this maliciously, either by malicious users on the homeserver, or by remote users sending URLs that a local user's client may automatically request a URL preview for. Remote users are not able to exploit this directly, because the URL preview endpoint is authenticated. Deployments with url_preview_enabled: false set in configuration are not affected. Deployments with url_preview_enabled: true set in configuration are affected. Deployments with no configuration value set for url_preview_enabled are not affected, because the default is false. Administrators of homeservers with URL previews enabled are advised to upgrade to v1.61.1 or higher. Users unable to upgrade should set url_preview_enabled to false.

AnalysisAI

Synapse is an open source home server implementation for the Matrix chat network. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Technical ContextAI

This vulnerability is classified under CWE-674. Synapse is an open source home server implementation for the Matrix chat network. In versions prior to 1.61.1 URL previews of some web pages can exhaust the available stack space for the Synapse process due to unbounded recursion. This is sometimes recoverable and leads to an error for the request causing the problem, but in other cases the Synapse process may crash altogether. It is possible to exploit this maliciously, either by malicious users on the homeserver, or by remote users sending URLs that a local user's client may automatically request a URL preview for. Remote users are not able to exploit this directly, because the URL preview endpoint is authenticated. Deployments with url_preview_enabled: false set in configuration are not affected. Deployments with url_preview_enabled: true set in configuration are affected. Deployments with no configuration value set for url_preview_enabled are not affected, because the default is false. Administrators of homeservers with URL previews enabled are advised to upgrade to v1.61.1 or higher. Users unable to upgrade should set url_preview_enabled to false. Affected products include: Matrix Synapse, Fedoraproject Fedora. Version information: prior to 1.61.1.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2017-9769 CRITICAL POC
9.8 Aug 02

A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpe

CVE-2017-15708 CRITICAL
9.8 Dec 11

In Apache Synapse, by default no authentication is required for Java Remote Method Invocation (RMI). Rated critical seve

CVE-2019-18835 CRITICAL
9.8 Nov 08

Matrix Synapse before 1.5.0 mishandles signature checking on some federation APIs. Rated critical severity (CVSS 9.8), t

CVE-2021-30494 MEDIUM POC
5.5 Apr 14

Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries

CVE-2021-30493 MEDIUM POC
5.5 Apr 14

Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries

CVE-2018-16515 HIGH
8.8 Sep 18

Matrix Synapse before 0.33.3.1 allows remote attackers to spoof events and possibly have unspecified other impacts by le

CVE-2025-30355 HIGH
7.1 Mar 27

Synapse is an open source Matrix homeserver implementation. Rated high severity (CVSS 7.1), this vulnerability is remote

CVE-2017-11652 HIGH
8.4 Aug 18

Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the CrashReporter directory, which allows local users t

CVE-2023-32323 MEDIUM POC
4.3 May 26

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Rated medium severity (

CVE-2021-21332 HIGH
8.2 Mar 26

Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Rated high severity (CVSS 8.2)

CVE-2017-14398 HIGH
7.8 Sep 13

rzpnk.sys in Razer Synapse 2.20.15.1104 allows local users to read and write to arbitrary memory locations, and conseque

CVE-2017-11653 HIGH
7.8 Aug 18

Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the Devices directory, which allows local users to gain

Share

CVE-2022-31052 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy