Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-37302— Synapse denial of service through media disk space consumption

CVSS 7.5 · High EPSS 0.48% · P65
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-37302

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Synapse denial of service through media disk space consumption
Source: NVD (National Vulnerability Database)
Vulnerability Description
Synapse is an open-source Matrix homeserver. Synapse versions before 1.106 are vulnerable to a disk fill attack, where an unauthenticated adversary can induce Synapse to download and cache large amounts of remote media. The default rate limit strategy is insufficient to mitigate this. This can lead to a denial of service, ranging from further media uploads/downloads failing to completely unavailability of the Synapse process, depending on how Synapse was deployed. Synapse 1.106 introduces a new "leaky bucket" rate limit on remote media downloads to reduce the amount of data a user can request at a time. This does not fully address the issue, but does limit an unauthenticated user's ability to request large amounts of data to be cached.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
不加限制或调节的资源分配
Source: NVD (National Vulnerability Database)
Vulnerability Title
Element Synapse 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Element Synapse是Element开源的一个开源 Matrix 家庭服务器实现。 Element Synapse 1.106之前版本存在安全漏洞,该漏洞源于容易受到磁盘填充攻击,未经身份验证的攻击者可以诱使Synapse下载和缓存大量远程媒体,可能会导致拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
element-hqsynapse < 1.106 -

II. Public POCs for CVE-2024-37302

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2024-37302

登录查看更多情报信息。

Same Patch Batch · element-hq · 2024-12-03 · 6 CVEs total

CVE-2024-373035.3 MEDIUMSynapse unauthenticated writes to the media repository allow planting of problematic conte
CVE-2024-538674.3 MEDIUMSynapse Matrix has a partial room state leak via Sliding Sync
CVE-2024-53863Synapse can be forced to thumbnail unexpected file formats, invoking external, potentially
CVE-2024-52815Synapse allows a a malformed invite to break the invitee's `/sync`
CVE-2024-52805Synapse allows unsupported content types to lead to memory exhaustion

IV. Related Vulnerabilities

Same product: synapse
Same vendor: element-hq
Same weakness: CWE-770

V. Comments for CVE-2024-37302

No comments yet

Leave a comment