Main Vulnerability Database SB2019112906

SB2019112906 - Authentication bypass in Synapse

Published: November 29, 2019

Security Bulletin ID SB2019112906

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper Authentication (CVE-ID: N/A)

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to the application does not remove local threepids upon user deactivation and allows access for deactivated accounts.The problem resides within the "/synapse/storage/data_stores/main/registration.py" and "/synapse/handlers/deactivate_account.py" scripts.

A remote attacker can bypass authentication and gain unauthorized access to the application.

Remediation

Install update from vendor's website.

References

https://github.com/matrix-org/synapse/releases/tag/v1.6.1