Suggestions search

All statuses

Filter by:

With package: navidrome

Found 2 matching suggestions

View:

Compact

Detailed

Untriaged

Permalink CVE-2026-25578

6.1 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): LOW
Availability impact (A): NONE

created 2 months, 2 weeks ago Activity log

Created suggestion 2 months, 2 weeks ago

Navidrome is vulnerable to XSS via comment from song metadata

Navidrome is an open source web-based music collection server and streamer. Prior to version 0.60.0, a cross-site scripting vulnerability in the frontend allows a malicious attacker to inject code through the comment metadata of a song to exfiltrate user credentials. This issue has been patched in version 0.60.0.

References

https://github.com/navidrome/navidrome/security/advisories/GHSA-rh3r-8pxm-hg4w x_refsource_CONFIRM
https://github.com/navidrome/navidrome/commit/d7ec7355c9036d5be659d6ac555c334bb5848ba6 x_refsource_MISC
https://github.com/navidrome/navidrome/releases/tag/v0.60.0 x_refsource_MISC

Affected products

navidrome

==< 0.60.0

Matching in nixpkgs

pkgs.navidrome

Navidrome Music Server and Streamer compatible with Subsonic/Airsonic

nixos-unstable -
- nixpkgs-unstable 0.59.0
nixos-25.11 0.58.0

Package maintainers

@aciceri Andrea Ciceri <andrea.ciceri@autistici.org>
@squalus squalus <squalus@squalus.net>
@tebriel tebriel <tebriel@frodux.in>

Untriaged

Permalink CVE-2026-25579

created 2 months, 2 weeks ago Activity log

Created suggestion 2 months, 2 weeks ago

Navidrome affected by Denial of Service and disk exhaustion via oversized `size` parameter in `/rest/getCoverArt` and `/share/img/<token>` endpoints

Navidrome is an open source web-based music collection server and streamer. Prior to version 0.60.0, authenticated users can crash the Navidrome server by supplying an excessively large size parameter to /rest/getCoverArt or to a shared-image URL (/share/img/<token>). When processing such requests, the server attempts to create an extremely large resized image, causing uncontrolled memory growth. This triggers the Linux OOM killer, terminates the Navidrome process, and results in a full service outage. If the system has sufficient memory and survives the allocation, Navidrome then writes these extremely large resized images into its cache directory, allowing an attacker to rapidly exhaust server disk space as well. This issue has been patched in version 0.60.0.

References

https://github.com/navidrome/navidrome/security/advisories/GHSA-hrr4-3wgr-68x3 x_refsource_CONFIRM
https://github.com/navidrome/navidrome/releases/tag/v0.60.0 x_refsource_MISC

Affected products

navidrome

==< 0.60.0

Matching in nixpkgs

pkgs.navidrome

Navidrome Music Server and Streamer compatible with Subsonic/Airsonic

nixos-unstable -
- nixpkgs-unstable 0.59.0
nixos-25.11 0.58.0

Package maintainers

@aciceri Andrea Ciceri <andrea.ciceri@autistici.org>
@squalus squalus <squalus@squalus.net>
@tebriel tebriel <tebriel@frodux.in>