CVE-2026-40089

CRITICAL 9.9

Sonicverse has Server-Side Request Forgery via user-controlled URLs in dashboard API client

CVSS Score

9.9

EPSS Score

0.0%

EPSS Percentile

11th

Sonicverse is a Self-hosted Docker Compose stack for live radio streaming. The Sonicverse Radio Audio Streaming Stack dashboard contains a Server-Side Request Forgery (SSRF) vulnerability in its API client (apps/dashboard/lib/api.ts). Installations created using the provided install.sh script (including the one‑liner bash <(curl -fsSL https://sonicverse.short.gy/install-audiostack)) are affected. In these deployments, the dashboard accepts user-controlled URLs and passes them directly to a server-side HTTP client without sufficient validation. An authenticated operator can abuse this to make arbitrary HTTP requests from the dashboard backend to internal or external systems. This vulnerability is fixed with commit cb1ddbacafcb441549fe87d3eeabdb6a085325e4.

CWE	CWE-918
Vendor	sonicverse-eu
Product	audiostreaming-stack
Published	Apr 9, 2026
Last Updated	Apr 13, 2026

Stay Ahead of the Next One

Get instant alerts for sonicverse-eu audiostreaming-stack

Be the first to know when new critical vulnerabilities affecting sonicverse-eu audiostreaming-stack are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

Low

Affected Versions

sonicverse-eu / audiostreaming-stack

< cb1ddbacafcb441549fe87d3eeabdb6a085325e4

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/sonicverse-eu/audiostreaming-stack/security/advisories/GHSA-8vvj-7f7r-7v48