CVE-2023-0919

Name of the Vulnerable Software and Affected Versions kareadita/kavita versions prior to 0.7.0

Description The issue is related to a missing authentication for a critical function in the kareadita/kavita GitHub repository. This could allow a remote attacker to impact the confidentiality and integrity of protected information.

Recommendations For versions prior to 0.7.0, update to version 0.7.0 or later to resolve the issue. As a temporary workaround, consider restricting access to critical functions until a patch is applied.