CVE-2020-26890

HIGH

Matrix Synapse < 1.20.0 - Denial of Service via Malformed m.room.member Event JSON Values

Title source: llm
STIX 2.1

Description

Matrix Synapse before 1.20.0 erroneously permits non-standard NaN, Infinity, and -Infinity JSON values in fields of m.room.member events, allowing remote attackers to execute a denial of service attack against the federation and common Matrix clients. If such a malformed event is accepted into the room's state, the impact is long-lasting and is not fixed by an upgrade to a newer version, requiring the event to be manually redacted instead. Since events are replicated to servers of other room members, the impact is not constrained to the server of the event sender.

References (3)

Core 3

Scores

CVSS v3 7.5
EPSS 0.0297
EPSS Percentile 85.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-20
Status published
Products (4)
fedoraproject/fedora 32
fedoraproject/fedora 33
matrix/synapse < 1.20.0
pypi/matrix-synapse 0 - 1.20.0PyPI
Published Nov 24, 2020
Tracked Since Feb 18, 2026