Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Remote Authentication-Bypass can lead to server crash or limited information disclosure due to faulty pattern matching
Vulnerability Description
Audiobookshelf is a self-hosted audiobook and podcast server. Starting in version 2.17.0 and prior to version 2.19.1, a flaw in the authentication bypass logic allows unauthenticated requests to match certain unanchored regex patterns in the URL. Attackers can craft URLs containing substrings like "/api/items/1/cover" in a query parameter (?r=/api/items/1/cover) to partially bypass authentication or trigger server crashes under certain routes. This could lead to information disclosure of otherwise protected data and, in some cases, a complete denial of service (server crash) if downstream code expects an authenticated user object. Version 2.19.1 contains a patch for the issue.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Vulnerability Type
通过数据查询的敏感数据暴露
Vulnerability Title
Audiobookshelf 安全漏洞
Vulnerability Description
Audiobookshelf是Audiobookshelf开源的一个自托管的有声读物和播客服务器。 Audiobookshelf存在安全漏洞,该漏洞源于身份验证绕过逻辑中存在一个漏洞,允许未经身份验证的请求与 URL 中的某些未锚定正则表达式模式匹配。
CVSS Information
N/A
Vulnerability Type
N/A