CVE-2024-32000

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-32000
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-32000.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-32000
Aliases
Published
2024-04-12T20:02:51.987Z
Modified
2026-04-10T05:12:36.241378Z
Severity
  • 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
Summary
Truncated content of messages can be leaked from matrix-appservice-irc
Details

matrix-appservice-irc is a Node.js IRC bridge for the Matrix messaging protocol. matrix-appservice-irc before version 2.0.0 can be exploited to leak the truncated body of a message if a malicious user sends a Matrix reply to an event ID they don't have access to. As a precondition to the attack, the malicious user needs to know the event ID of the message they want to leak, as well as to be joined to both the Matrix room and the IRC channel it is bridged to. The message reply containing the leaked message content is visible to IRC channel members when this happens. matrix-appservice-irc 2.0.0 checks whether the user has permission to view an event before constructing a reply. Administrators should upgrade to this version. It's possible to limit the amount of information leaked by setting a reply template that doesn't contain the original message. See these lines 601-604 in the configuration file linked.

Database specific 
{
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-280",
        "CWE-755"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/32xxx/CVE-2024-32000.json"
}
References

Affected packages

Git / github.com/matrix-org/matrix-appservice-irc

Affected ranges

Type
GIT
Repo
https://github.com/matrix-org/matrix-appservice-irc
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
d5d67d1d3ea3f0f6962a0af2cc57b56af3ad2129

Affected versions

0.*
0.1.1
0.10.1
0.14.0-rc1
0.14.0-rc2
0.14.0-rc3
0.14.0-rc4
0.15.2
0.20.2
0.21.0
0.21.0-rc3
0.22.0
0.22.0-rc1
0.23.0
0.23.0-fosdem
0.23.0-rc1
0.24.0
0.24.0-rc1
0.25.0-rc1
0.27.0
0.27.0-rc1
0.27.0-rc2
0.27.0-rc3
0.31.0
0.31.0-rc1
0.32.0
0.32.0-rc1
0.32.0-rc2
0.33.0
0.33.0-rc2
0.33.1
0.36.0
0.37.1
0.5.0
0.7.0
0.7.1
1.*
1.0.0
1.0.0-rc1
1.0.1
Other
develop-2019-02-17
develop-2019-11-12
develop-2019-11-15
develop-2019-11-26
develop-2019-11-28
matrix-org-testing
v0.*
v0.9.0
v0.9.0-rc1
v0.9.1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-32000.json"