CVE-2026-50234
HighCVSS 7.5Summary
Lyrion Music Server version 9.2.0 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting directory traversal in the web server context.
Risk Assessment
Attackers can manipulate file path parameters to access sensitive files outside the intended directory structure, posing a serious threat to data security.
Recommendation
It is recommended to update the Lyrion Music Server to the latest version and implement appropriate security measures to mitigate the risk of this vulnerability.
Original NVD description (English source)
Lyrion Music Server 9.2.0 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting directory traversal in the web server context. Attackers can manipulate file path parameters to access sensitive files outside the intended directory structure.

