External risk intelligence
Cleanuparr could allow external attackers to gain administrator access.
Cleanuparr could allow external attackers to gain full administrator access to the application by spoofing their network location. This could compromise your automated file maintenance systems. No evidence suggests this vulnerability is currently being exploited.
Halo Surface Signal
2/ 5Cleanuparr is an internal automation tool for media management services like Sonarr and Radarr, typically deployed within private or internal networks. It is not designed to be public-facing, and while reachable via custom remote access configurations, public internet exposure is not a standard or intended deployment pattern for this type of backend utility.
Exposure facts
H – Horizon Alert
A security issue has been identified in the Cleanuparr tool regarding how it verifies the origin of network connections. Because the system relies on user-provided data to identify the source of traffic, an attacker can spoof their location to appear as a trusted user. By manipulating this identification process, an unauthenticated remote party can bypass security controls to gain full administrative access to the application. This is a meaningful concern, as it allows unauthorized individuals to control the tool without requiring valid credentials.
A – Asset Exposure
This vulnerability affects Cleanuparr, a tool used to automate file maintenance for services like Sonarr, Radarr, and associated download clients. It may allow an unauthorized party to bypass network restrictions and gain full administrator access to the application. While typically deployed within internal networks, any installations reachable from the public internet could be susceptible to unauthorized remote access by external attackers.
L – Live Threat
At this time, the available context does not indicate active exploitation or observed targeting of this vulnerability. There are no current reports regarding the availability of public exploit code or known proof-of-concept activity. While this issue poses a potential risk for unauthorized administrative access, we have no confirmed signals of misuse by malicious actors in the wild.
O – Operational Fix
To protect administrative access to the Cleanuparr tool, please ensure all instances are updated to the latest available version immediately. This update addresses the header configuration issue that could allow unauthorized access to your environment. By applying this release, you will resolve the authentication vulnerability and secure your management interface.