CVE-2026-50233

MEDIUM 5.3

Lyrion Music Server 9.2.0 Arbitrary Directory Listing

CVSS Score

5.3

EPSS Score

0.0%

EPSS Percentile

14th

Lyrion Music Server 9.2.0 contains an arbitrary directory listing vulnerability in its readdirectory query, exposed through both the CLI service (TCP port 9090) and the HTTP JSON-RPC endpoint (/jsonrpc.js). The query accepts a folder parameter and lists its contents with no restriction to the configured media directories and no authentication in the default configuration, allowing a remote, unauthenticated attacker to enumerate arbitrary locations on the host filesystem.

CWE	CWE-548
Vendor	lms community
Product	lyrion music server
Published	Jun 5, 2026
Last Updated	Jun 9, 2026

Stay Ahead of the Next One

Get instant alerts for lms community lyrion music server

Be the first to know when new medium vulnerabilities affecting lms community lyrion music server are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Affected Versions

LMS Community / Lyrion Music Server

9.2.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

zeroscience.mk: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2026-5991.php vulncheck.com: https://www.vulncheck.com/advisories/lyrion-music-server-arbitrary-directory-listing

Credits

LiquidWorm as Gjoko Krstic of Zero Science Lab