matrix-appservice-irc events can be crafted to leak parts of targeted messages from other bridged rooms
CVE-2023-38700

3.5LOW

Key Information:

Vendor: Matrix-org
Status: Matrix-appservice-irc
Vendor: CVE Published:; 4 August 2023

What is CVE-2023-38700?

matrix-appservice-irc is a Node.js IRC bridge for Matrix. Prior to version 1.0.1, it was possible to craft an event such that it would leak part of a targeted message event from another bridged room. This required knowing an event ID to target. Version 1.0.1n fixes this issue. As a workaround, set the matrixHandler.eventCacheSize config value to 0. This workaround may impact performance.

Affected Version(s)

matrix-appservice-irc < 1.0.1

References

https://github.com/matrix-org/matrix-appservice-irc/secur...

x_refsource_CONFIRM

https://github.com/matrix-org/matrix-appservice-irc/commi...

x_refsource_MISC

https://github.com/matrix-org/matrix-appservice-irc/relea...

x_refsource_MISC

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 4, 2023
Vulnerability Reserved
Jul 24, 2023

Matrix-org

What is CVE-2023-38700?

Affected Version(s)

References

CVSS V3.1

Timeline