CVE-2026-40089: CWE-918: Server-Side Request Forgery (SSRF) in sonicverse-eu audiostreaming-stack
Sonicverse is a Self-hosted Docker Compose stack for live radio streaming. The Sonicverse Radio Audio Streaming Stack dashboard contains a Server-Side Request Forgery (SSRF) vulnerability in its API client (apps/dashboard/lib/api.ts). Installations created using the provided install.sh script (including the one‑liner bash <(curl -fsSL https://sonicverse.short.gy/install-audiostack)) are affected. In these deployments, the dashboard accepts user-controlled URLs and passes them directly to a server-side HTTP client without sufficient validation. An authenticated operator can abuse this to make arbitrary HTTP requests from the dashboard backend to internal or external systems. This vulnerability is fixed with commit cb1ddbacafcb441549fe87d3eeabdb6a085325e4.
AI Analysis
Technical Summary
Sonicverse audiostreaming-stack's dashboard API client improperly validates user-supplied URLs, enabling an authenticated operator to perform SSRF attacks. This allows the backend server to send arbitrary HTTP requests to internal or external systems, potentially exposing sensitive data or enabling further attacks. The vulnerability affects versions prior to commit cb1ddbacafcb441549fe87d3eeabdb6a085325e4. The CVSS 3.1 score of 9.9 reflects network attack vector, low attack complexity, required privileges, no user interaction, and high impact on confidentiality, integrity, and low impact on availability.
Potential Impact
An authenticated operator can exploit this SSRF vulnerability to make arbitrary HTTP requests from the backend server to internal or external systems. This can lead to unauthorized information disclosure, potential internal network scanning, or interaction with otherwise inaccessible services. The vulnerability severely impacts confidentiality and integrity, with a minor impact on availability.
Mitigation Recommendations
A fix is available and implemented in commit cb1ddbacafcb441549fe87d3eeabdb6a085325e4. Users should update their Sonicverse audiostreaming-stack installations to this commit or later to remediate the SSRF vulnerability. Since this is a self-hosted Docker Compose stack, operators must manually apply the update. No vendor advisory was provided to indicate alternative mitigations or that no action is required.
CVE-2026-40089: CWE-918: Server-Side Request Forgery (SSRF) in sonicverse-eu audiostreaming-stack
Description
Sonicverse is a Self-hosted Docker Compose stack for live radio streaming. The Sonicverse Radio Audio Streaming Stack dashboard contains a Server-Side Request Forgery (SSRF) vulnerability in its API client (apps/dashboard/lib/api.ts). Installations created using the provided install.sh script (including the one‑liner bash <(curl -fsSL https://sonicverse.short.gy/install-audiostack)) are affected. In these deployments, the dashboard accepts user-controlled URLs and passes them directly to a server-side HTTP client without sufficient validation. An authenticated operator can abuse this to make arbitrary HTTP requests from the dashboard backend to internal or external systems. This vulnerability is fixed with commit cb1ddbacafcb441549fe87d3eeabdb6a085325e4.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Sonicverse audiostreaming-stack's dashboard API client improperly validates user-supplied URLs, enabling an authenticated operator to perform SSRF attacks. This allows the backend server to send arbitrary HTTP requests to internal or external systems, potentially exposing sensitive data or enabling further attacks. The vulnerability affects versions prior to commit cb1ddbacafcb441549fe87d3eeabdb6a085325e4. The CVSS 3.1 score of 9.9 reflects network attack vector, low attack complexity, required privileges, no user interaction, and high impact on confidentiality, integrity, and low impact on availability.
Potential Impact
An authenticated operator can exploit this SSRF vulnerability to make arbitrary HTTP requests from the backend server to internal or external systems. This can lead to unauthorized information disclosure, potential internal network scanning, or interaction with otherwise inaccessible services. The vulnerability severely impacts confidentiality and integrity, with a minor impact on availability.
Mitigation Recommendations
A fix is available and implemented in commit cb1ddbacafcb441549fe87d3eeabdb6a085325e4. Users should update their Sonicverse audiostreaming-stack installations to this commit or later to remediate the SSRF vulnerability. Since this is a self-hosted Docker Compose stack, operators must manually apply the update. No vendor advisory was provided to indicate alternative mitigations or that no action is required.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-04-09T00:39:12.206Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69d806d21cc7ad14da15a57a
Added to database: 4/9/2026, 8:06:42 PM
Last enriched: 4/17/2026, 11:53:31 AM
Last updated: 5/25/2026, 2:39:15 AM
Views: 82
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.