Itz-D0Dgy

**Name of the Vulnerable Software and Affected Versions** Adguard Home versions prior to 0.107.52 **Description** An arbitrary file read issue allows authenticated attackers to access arbitrary files as root on the underlying Operating System by placing a crafted file into a readable directory. This poses a serious security risk, enabling attackers to read sensitive files on systems running Adguard Home. **Recommendations** For versions prior to 0.107.52, update to version 0.107.52 or later to resolve the issue. As a temporary workaround, consider restricting access to readable directories to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Jellyfin versions prior to 10.9.10 **Description** The Jellyfin user profile image upload accepts SVG files, allowing for a stored XSS attack against an admin user via a specially crafted malicious SVG file. When viewed by an admin outside of the Jellyfin Web UI, this malicious SVG file could interact with the browser's LocalStorage and retrieve an AccessToken, which in turn can be used in an API call to elevate the target user to a Jellyfin administrator. The actual attack vector is unlikely to be exploited, as it requires specific actions by the administrator to view the SVG image outside of Jellyfin's WebUI. **Recommendations** For versions prior to 10.9.10, upgrade to release version 10.9.10 to resolve the issue. As a temporary workaround, consider disabling the upload of SVG files for user profiles until the patch is applied. Restrict access to the user profile image upload feature to minimize the risk of exploitation. Avoid viewing user profile images outside of the Jellyfin Web UI to prevent potential interaction with the browser's LocalStorage.

**Name of the Vulnerable Software and Affected Versions** Emby Media Server version 4.8.3.0 **Description** A Stored Cross Site Scripting issue allows a remote attacker to escalate privileges via the notifications.html component. **Recommendations** For Emby Media Server version 4.8.3.0, consider disabling access to the notifications.html component until a patch is available to prevent privilege escalation.

**Name of the Vulnerable Software and Affected Versions** ZITADEL versions prior to 2.50.0 **Description** ZITADEL provides users the possibility to use Time-based One-Time-Password (TOTP) and One-Time-Password (OTP) through SMS and Email. While ZITADEL already gives administrators the option to define a `Lockout Policy` with a maximum amount of failed password check attempts, there was no such mechanism for (T)OTP checks. **Recommendations** For versions prior to 2.50.0, update to version 2.50.0 or later to resolve the issue. As a temporary workaround, consider restricting access to (T)OTP checks until the update is applied.

**Name of the Vulnerable Software and Affected Versions** ZITADEL versions prior to 2.38.3 ZITADEL versions prior to 2.40.5 **Description** ZITADEL provides identity infrastructure, allowing administrators to define a `Lockout Policy` with a maximum amount of failed password check attempts. In the affected implementation, an attacker could start multiple parallel password checks, attempting more combinations than configured in the `Lockout Policy`. This allowed the attacker to exceed the lockout limit, potentially leading to unauthorized access. **Recommendations** For versions prior to 2.38.3, update to version 2.38.3 or later. For versions prior to 2.40.5, update to version 2.40.5 or later. As a temporary workaround is not applicable since a patch is already available, ensure to apply the patch as soon as possible to prevent exploitation.