Security Advisory

CVE-2023-47624

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-13 21:09:00

Last updated 2024-08-02 21:16:42

Assigner GitHub_M

State PUBLISHED

Description

Audiobookshelf is a self-hosted audiobook and podcast server. In versions 2.4.3 and prior, any user (regardless of their permissions) may be able to read files from the local file system due to a path traversal in the `/hls` endpoint. This issue may lead to Information Disclosure. As of time of publication, no patches are available.

← Browse all CVEs View on cve.org ↗