What is the severity of CVE-2025-27146?

CVE-2025-27146 is rated as a high severity vulnerability due to its potential for arbitrary command execution.

How do I fix CVE-2025-27146?

To fix CVE-2025-27146, upgrade to matrix-appservice-irc version 3.0.4 or later.

What can an attacker do with CVE-2025-27146?

An attacker can inject arbitrary IRC commands that are executed as their own IRC user.

Which versions of matrix-appservice-irc are affected by CVE-2025-27146?

Versions of matrix-appservice-irc up to 3.0.3 are affected by CVE-2025-27146.

Is there a workaround for CVE-2025-27146?

There is no official workaround; the best course of action is to apply the patch by updating to version 3.0.4.

Vulnerability/
CVE-2025-27146

medium

4.3

CWE

77 88

EPSS

0.030%

25/2/2025

4/3/2025

CVE-2025-27146: Matrix IRC Bridge allows IRC command injection to own puppeted user

First published: Tue Feb 25 2025(Updated: )

### Impact The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command execution as the puppeted user. The attacker can only inject commands executed as their own IRC user. ### Patches The vulnerability has been patched in matrix-appservice-irc version 3.0.4. ### For more information If you have any questions or comments about this advisory, please email us at [security at matrix.org](mailto:security@matrix.org).

Credit: security-advisories@github.com

Affected Software	Affected Version	How to fix
npm/matrix-appservice-irc	<3.0.4	3.0.4
Matrix-appservice-bridge	<3.0.4
	<3.0.4

Remedy

https://github.com/matrix-org/matrix-appservice-irc/commit/74f02c8e11f16ed1b355700092c1aa9c036a11bd

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2025-27146?
CVE-2025-27146 is rated as a high severity vulnerability due to its potential for arbitrary command execution.
How do I fix CVE-2025-27146?
To fix CVE-2025-27146, upgrade to matrix-appservice-irc version 3.0.4 or later.
What can an attacker do with CVE-2025-27146?
An attacker can inject arbitrary IRC commands that are executed as their own IRC user.
Which versions of matrix-appservice-irc are affected by CVE-2025-27146?
Versions of matrix-appservice-irc up to 3.0.3 are affected by CVE-2025-27146.
Is there a workaround for CVE-2025-27146?
There is no official workaround; the best course of action is to apply the patch by updating to version 3.0.4.

agent/description
agent/weakness
agent/references
agent/title
agent/type
agent/author
agent/first-publish-date
collector/github-advisory-latest
source/GitHub
alias/GHSA-5mvm-89c9-9gm5
alias/CVE-2025-27146
agent/software-canonical-lookup
agent/source
collector/mitre-cve
source/MITRE
collector/nvd-api
source/NVD
agent/last-modified-date
agent/remedy
agent/severity
agent/softwarecombine
agent/tags
collector/nvd-cve
agent/event
collector/epss-latest
source/FIRST
agent/epss
collector/github-advisory
package-manager/npm
vendor/matrix
canonical/matrix-appservice-bridge

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.