Description

Sonarr is a PVR for Usenet and BitTorrent users. In versions on the 4.x branch prior to 4.0.17.2950, an unauthenticated remote attacker can potentially read any file readable by the Sonarr process. These include application configuration files (containing API keys and database credentials), Windows system files, and any user-accessible files on the same drive This issue only impacts Windows systems; macOS and Linux are unaffected. Files returned from the API were not limited to the directory on disk they were intended to be served from. This problem has been patched in 4.0.17.2950 in the nightly/develop branch or 4.0.17.2952 for stable/main releases. It's possible to work around the issue by only hosting Sonarr on a secure internal network and accessing it via VPN, Tailscale or similar solution outside that network.

INFO

Published Date :

2026-03-25T21:11:20.078Z

Last Modified :

2026-03-26T17:53:31.620Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-30976 vulnerability.

Vendors Products
Sonarr
  • Sonarr
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-30976.

URL Resource
https://github.com/Sonarr/Sonarr/releases/tag/v4.0.17.2950 cve-icon cve-icon
https://github.com/Sonarr/Sonarr/releases/tag/v4.0.17.2952 cve-icon cve-icon
https://github.com/Sonarr/Sonarr/security/advisories/GHSA-h393-v5hm-6h8f cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact