PT-2026-7886 · Unknown · Matrix-Tools+2
Wrjlewis
·
Published
2026-02-12
·
Updated
2026-02-13
·
CVE-2026-24044
CVSS v4.0
9.2
Critical
| Vector | AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
Element Server Suite Community Edition (ESS Community) versions prior to 25.12.1
Description
The Element Server Suite Community Edition (ESS Community) Helm Chart contains a flaw in its secrets initialization hook, specifically within the
matrix-tools container before version 0.5.7. This issue involves an insecure method for generating Matrix server keys. A network attacker could potentially recreate the same key pair, enabling server impersonation. This impacts the confidentiality, integrity, and availability of rooms with the vulnerable server as a member. The confidentiality of past end-to-end encrypted conversations is not affected. The issue stems from the generation of the secret within the ESS Community Helm Chart values when initSecrets.enabled is not set to false and synapse.signingKey is not defined.Recommendations
Update to ESS Community Helm Chart version 25.12.1 or later.
Ensure
initSecrets.enabled is set to false in the ESS Community Helm Chart values.
Define synapse.signingKey in the ESS Community Helm Chart values.Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ess Community Helm Chart
Element Server Suite Community Edition
Matrix-Tools