CVE-2023-51697: 
NixOS vulnerability analysis and mitigation

Audiobookshelf, a self-hosted audiobook and podcast server, was found to contain an unauthenticated blind server-side request forgery (SSRF) vulnerability in podcastUtils.js prior to version 2.7.0. The vulnerability was discovered on December 15, 2023, and was assigned CVE-2023-51697 (GitHub Advisory).

The vulnerability exists in the getPodcastFeed function in server/controllers/PodcastController.js, which takes a user-controlled rssFeed POST parameter and uses it to send a GET request in server/utils/podcastUtils.js line 221. The response of the request is not reflected back to the user, making it a blind SSRF vulnerability. The issue has a CVSS v3.1 base score of 7.5 HIGH (NIST) and 4.3 MEDIUM (GitHub) (NVD).

This vulnerability allows attackers to craft GET requests on behalf of the audiobookshelf server, potentially enabling them to interact with internal systems or services that are not directly accessible from the internet (GitHub Lab).

The vulnerability has been patched in version 2.7.0 of Audiobookshelf. Users should upgrade to this version or later to address the issue. There are no known workarounds for this vulnerability (NVD).