CVE Catalog

CVE-2026-50234

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Summary

Lyrion Music Server version 9.2.0 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting directory traversal in the web server context.

Risk Assessment

Attackers can manipulate file path parameters to access sensitive files outside the intended directory structure, posing a serious threat to data security.

Recommendation

It is recommended to update the Lyrion Music Server to the latest version and implement appropriate security measures to mitigate the risk of this vulnerability.

Original NVD description (English source)

Lyrion Music Server 9.2.0 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting directory traversal in the web server context. Attackers can manipulate file path parameters to access sensitive files outside the intended directory structure.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS