CVE-2023-43662

Name of the Vulnerable Software and Affected Versions ShokoServer (affected versions not specified)

Description The issue affects ShokoServer, a media server for organizing anime. In affected versions, the "/api/Image/WithPath" endpoint is accessible without authentication and is supposed to return default server images. The endpoint accepts the parameter serverImagePath, which is not sanitized before being passed to System.IO.File.OpenRead, resulting in an arbitrary file read. This may lead to an unauthenticated attacker accessing sensitive information and reading files stored on the server. The issue is exacerbated in the Windows installer, which installs ShokoServer as administrator.

Recommendations As a temporary workaround, consider limiting access to the "/api/Image/WithPath" endpoint or manually patching installations until a patched release is made. Users should manually patch their installations until a patched release is made. At the moment, there is no information about a newer version that contains a fix for this vulnerability.