CVE-2026-49129

EPSS 0.28%
Veröffentlicht 28.05.2026 19:10:31
Zuletzt bearbeitet 29.05.2026 14:07:47
Quelle disclosure@vulncheck.com
CVE-Watchlists
Login
Unerledigt
Login

Music Player Daemon < 0.24.11 SSRF via CurlInputPlugin

Music Player Daemon (MPD) before version 0.24.11 contains a server-side request forgery vulnerability in CurlInputPlugin where CURLOPT_FOLLOWLOCATION is set without CURLOPT_REDIR_PROTOCOLS_STR, allowing unauthenticated attackers to bypass the http/https scheme restriction by causing a malicious HTTP server to redirect to non-HTTP protocols such as gopher, ftp, sftp, ldap, dict, rtmp, or rtsp. Attackers can trigger this vulnerability via MPD commands that initiate URL fetches, including add, readcomments, albumart, readpicture, or load, to interact with internal or restricted network services on systems running libcurl versions prior to 7.85.0.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 10

CNA 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerMusicPlayerDaemon

≫

Produkt MPD

Default Statusaffected

Version 0

Version < 0.24.11

Status affected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.28%	0.196

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
disclosure@vulncheck.com	6.9	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
disclosure@vulncheck.com	5.8	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

CWE-918 Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

https://www.musicpd.org/news/2026/05/mpd-0-24-11-released/

https://raw.githubusercontent.com/MusicPlayerDaemon/MPD/v0.24.11/NEWS

https://github.com/MusicPlayerDaemon/MPD/releases/tag/v0.24.11

https://github.com/MusicPlayerDaemon/MPD/issues/2487

https://github.com/MusicPlayerDaemon/MPD/commit/78341dd6c7b101c3feede233d4cc4f8f1fcc4bb3

https://www.vulncheck.com/advisories/music-player-daemon-ssrf-via-curlinputplugin

https://mstreet97.github.io/security-research/opensource/vulnerability-disclosure/cybersecurity/cve/2026/05/25/Four_Bugs_Reachable_nc.html

https://nvd.nist.gov/vuln/detail/CVE-2026-49129

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-49129

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-49129

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-49129