VDB

CVE-2020-26891

CVE-2020-26891 PUBLISHED

AuthRestServlet in Matrix Synapse before 1.21.0 is vulnerable to XSS due to unsafe interpolation of the session GET parameter. This allows a remote attacker to execute an XSS attack on the domain Synapse is hosted on, by supplying the victim user with a malicious URL to the /_matrix/client/r0/auth/*/fallback/web or /_matrix/client/unstable/auth/*/fallback/web Synapse endpoints.

EPSS 0.44% · 63.5th percentile

Risk Scores

EPSS Score
0.44%
63.5th percentile

Affected Products

VendorProductVersions
Ubuntu:Pro:18.04:LTSmatrix-synapse0, 0.19.2+dfsg-6, 0.24.0+dfsg-1
Ubuntu:Pro:20.04:LTSmatrix-synapse1.8.0-1, 1.7.3-1, 1.9.0-1
Ubuntu:Pro:22.04:LTSmatrix-synapse1.39.0-1, 1.47.0-2, 1.47.1-1

Timeline

  • Oct 16, 2020 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›