CVE-2026-29871 - Vulnerability Details

Description

A path traversal vulnerability exists in the awesome-llm-apps project in commit e46690f99c3f08be80a9877fab52acacf7ab8251 (2026-01-19) in the Beifong AI News and Podcast Agent backend in FastAPI backend, stream-audio endpoint, in file routers/podcast_router.py, in function stream_audio. The stream-audio endpoint accepts a user-controlled path parameter that is concatenated into a filesystem path without proper validation or restriction. An unauthenticated remote attacker can exploit this vulnerability to read arbitrary files from the server filesystem, potentially disclosing sensitive information such as configuration files and credentials.

Published: 2026-03-27

Score: n/a

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

A path traversal weakness in the Beifong AI News and Podcast Agent backend permits an unauthenticated attacker to read any file on the server. The stream-audio endpoint concatenates a user-supplied path into a filesystem location without validation, enabling direct disclosure of configuration files, credentials, and other sensitive data. This flaw exposes the confidentiality of the system.

Affected Systems

The vulnerability is present in the awesome-llm-apps project, specifically in the Beifong AI News and Podcast Agent backend built with FastAPI. It resides in routers/podcast_router.py at the stream-audio route and is tied to commit e46690f99c3f08be80a9877fab52acacf7ab8251. Any deployment exposing this endpoint without authentication or proper input sanitization is susceptible. No specific vendor version information is provided.

Risk and Exploitability

No CVSS or EPSS scores are available, but the flaw can be exploited remotely via a crafted path parameter to the stream-audio endpoint. The attacker requires no credentials and merely sends a request to the exposed URL. While the exact frequency of exploitation is unknown, the simplicity of the input manipulation makes the vulnerability a significant risk to confidentiality. As the vulnerability is not listed in KEV, it may not yet be widely exploited, but the potential impact warrants immediate attention.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

affected

Version	Status	Constraints
`n/a`	affected	—

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Deploy the fixed version of awesome-llm-apps that resolves the path traversal issue.
If no patch is immediately available, add input validation to the stream-audio endpoint to restrict file access to a predetermined safe directory or only allow specific file types.
Require authentication before accepting path parameters on the stream-audio endpoint.
Monitor application logs for attempted path traversal or unauthorized file read attempts.

Generated by OpenCVE AI on March 27, 2026 at 16:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://github.com/lilmingwa13/security-research/blob/main/CVE-2026-29871.md

History

Fri, 27 Mar 2026 20:30:00 +0000

Type	Values Removed	Values Added
Title		Path Traversal in Beifong AI News and Podcast Agent Backend Enables Arbitrary File Read
Weaknesses		CWE-200 CWE-22

Fri, 27 Mar 2026 15:15:00 +0000

Type	Values Removed	Values Added
Description		A path traversal vulnerability exists in the awesome-llm-apps project in commit e46690f99c3f08be80a9877fab52acacf7ab8251 (2026-01-19) in the Beifong AI News and Podcast Agent backend in FastAPI backend, stream-audio endpoint, in file routers/podcast_router.py, in function stream_audio. The stream-audio endpoint accepts a user-controlled path parameter that is concatenated into a filesystem path without proper validation or restriction. An unauthenticated remote attacker can exploit this vulnerability to read arbitrary files from the server filesystem, potentially disclosing sensitive information such as configuration files and credentials.
References		https://github.com/lilmingwa13/security-research/blob/main/CVE-2026-29871.md

Subscriptions

No data.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2026-03-27T00:00:00.000Z

Updated: 2026-03-27T20:26:22.909Z

Reserved: 2026-03-04T00:00:00.000Z

Link: CVE-2026-29871

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-03-27T15:16:52.067

Modified: 2026-03-27T15:16:52.067

Link: CVE-2026-29871

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-03-27T20:29:01Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object