CVE-2026-49128: MPD Path Traversal Information Disclosure Vulnerability
Music Player Daemon (MPD) versions before 0.24.11 allow unauthenticated attackers to access files and directories outside the configured music library through specially crafted commands. By exploiting how the application constructs file paths, an attacker can bypass intended boundaries and read arbitrary image files or enumerate directory contents that the MPD process has permission to access. This is a path traversal flaw that turns a music streaming service into an unintended information disclosure vector.
Source data · NVD / CISA · public domain
- CVSS
- 3.1 · 7.5 HIGH · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Weaknesses (CWE)
- CWE-22
- Affected products
- 0 configuration(s)
- Published / Modified
- 2026-05-28 / 2026-06-17
NVD description (verbatim)
Music Player Daemon (MPD) before version 0.24.11 contains a path traversal vulnerability in LocalStorage::MapFSOrThrow and LocalStorage::MapUTF8 within the local storage plugin, where the on-disk path is constructed by joining the storage root with a user-supplied URI as plain strings without canonicalization, allowing '..' segments to survive into the resolved path and be flattened by the kernel at openat() time. An unauthenticated attacker can exploit this flaw using the listfiles command to enumerate names, sizes, and modification times of arbitrary directories readable by the MPD process, and the albumart command to read image files in any attacker-chosen directory outside the configured music_directory.
8 reference(s) · View on NVD →
SEC.co analysis · AI-assisted, reviewed against source
Technical summary
The vulnerability resides in LocalStorage::MapFSOrThrow and LocalStorage::MapUTF8 functions within MPD's local storage plugin. When resolving user-supplied URIs to filesystem paths, the code concatenates the storage root directory with the user input without canonicalizing the result. This allows path traversal sequences (such as '..') to persist through the string concatenation and only get resolved at the kernel level during openat() system calls. An attacker leveraging the listfiles command can enumerate directory metadata (names, sizes, modification times) across any path accessible to the MPD process. The albumart command further enables reading of image files from arbitrary directories, effectively bypassing the music_directory boundary.
Business impact
For organizations running MPD as a shared music service or embedded in media applications, this vulnerability enables credential-free information disclosure. Attackers can discover system structure, identify other users' personal media, or locate configuration files—creating risk of privilege escalation paths or targeted social engineering. The lack of authentication requirement means any network-connected client can probe the system. While not offering write access or direct code execution, the reconnaissance capability poses meaningful harm to confidentiality and operational security posture.
Affected systems
Music Player Daemon (MPD) in all versions before 0.24.11 are vulnerable. This includes deployments across desktop Linux systems, NAS devices, embedded media servers, and containerized environments where MPD is used for local audio playback or streaming. Any instance with network accessibility and unauthenticated access enabled is at risk. Verify your installed MPD version against vendor release notes.
Exploitability
Exploitation is straightforward: an attacker needs only network access to the MPD daemon port (typically 6600) and knowledge of basic MPD commands. No authentication is required, no user interaction is needed, and no special network conditions must be met. The attack surface is low-complexity, making this readily exploitable by script-based reconnaissance tools or manual enumeration.
Remediation
Upgrade Music Player Daemon to version 0.24.11 or later. The patch addresses the vulnerability by implementing proper path canonicalization before file operations, ensuring that '..' segments and other traversal sequences are resolved safely and cannot escape the configured storage directory. Review vendor advisory documentation for detailed upgrade procedures specific to your deployment method (native packages, containers, etc.).
Patch guidance
Apply the MPD 0.24.11 update through your distribution's package manager or via direct compilation from upstream sources. Test the upgrade in a non-production environment first to ensure compatibility with your MPD configuration and connected clients. After patching, restart the MPD service and verify that music playback and legitimate file browsing operations function as expected. For containerized deployments, update base images and rebuild containers with the patched MPD version.
Detection guidance
Monitor for suspicious MPD command sequences, particularly repeated listfiles or albumart commands targeting paths outside the configured music_directory. Examine MPD logs for file access patterns that span multiple directory levels or reference parent directories (..). If MPD is exposed to untrusted networks, implement network-level access controls to restrict connections to authorized clients only. Use filesystem integrity monitoring to detect unexpected file reads by the MPD process.
Why prioritize this
This vulnerability merits prompt remediation because it requires no authentication, no user interaction, and no special network conditions—lowering the barrier to exploitation to near-zero. While limited to information disclosure rather than remote code execution, the ability to enumerate and read arbitrary files accessible to the MPD process directly compromises confidentiality. Organizations running MPD in multi-user or network-exposed scenarios should prioritize patching within their standard maintenance windows.
Risk score, explained
The CVSS 3.1 score of 7.5 (HIGH) reflects a network-accessible, unauthenticated vulnerability with high confidentiality impact and no complexity barriers. The vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N indicates the flaw can be exploited remotely with low effort, affects only the confidentiality of the target system, and requires no privileges or user interaction. The score appropriately captures the severity of uncontrolled information disclosure, though actual risk depends on deployment context and network exposure.
Frequently asked questions
Can an attacker write or delete files using this vulnerability?
No. This vulnerability is limited to reading and enumerating files. It does not provide write, delete, or modification capabilities. The impact is strictly information disclosure.
Do I need to worry about this if MPD is only accessible on my local network?
Reduce but do not eliminate concern. If your local network includes untrusted devices, guest networks, or containers from untrusted sources, the risk remains. Best practice is to patch regardless of network scope.
What versions of MPD are vulnerable?
All versions before 0.24.11 are affected. Verify your current version with 'mpd --version' and consult your distribution or vendor's release notes for the corresponding patched version available in your environment.
Does MPD require authentication by default?
MPD can be configured with password protection, but the default configuration does not enforce authentication for local network connections. Check your mpd.conf file to confirm whether authentication is enabled and properly configured.
This analysis is based on publicly available vulnerability data and vendor advisories current as of the publish date. Actual exploitability and risk may vary based on your specific MPD configuration, network exposure, and operational environment. Verify patch version numbers and availability against official vendor sources before deployment. This document is provided for informational purposes to aid security decision-making and does not constitute a guarantee of specific outcomes. Always test patches in controlled environments before production deployment. Source: NVD (public-domain), retrieved 2026-07-07. Analysis generated by SEC.co (claude-haiku-4-5).
Weaknesses (CWE)
Related vulnerabilities
- CVE-2018-25408HIGHOpen ISES Project Path Traversal Vulnerability (High Severity)
- CVE-2024-40646HIGHVertex Path Traversal Vulnerability – Remote File Access Risk
- CVE-2026-10108HIGHUnauthenticated Path Traversal in xiaomusic v0.5.7 – File Read Vulnerability
- CVE-2026-32847HIGHDeepCode Path Traversal Allows Unauthenticated Arbitrary File Read
- CVE-2026-35082HIGHMBS Solutions Gateway Firmware Path Traversal - File Access Vulnerability
- CVE-2026-39276HIGHEmlog Pro v2.6.9 Path Traversal Remote Code Execution
- CVE-2026-43624HIGHF5-TTS Path Traversal Vulnerability (CVSS 8.2)
- CVE-2026-44594HIGHLocal File Inclusion in esm.sh CDN – HIGH Severity Information Disclosure