CVE-2023-49096 | Jellyfin up to 10.8.12 /Videos//stream argument injection

Posted by Angelo Barbosa | Dec 6, 2023 | CVE

A vulnerability was found in Jellyfin up to 10.8.12 and classified as critical. This issue affects some unknown processing of the file /Videos//stream. The manipulation leads to argument injection.

The identification of this vulnerability is CVE-2023-49096. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49096 | Jellyfin up to 10.8.12 /Videos//stream argument injection

Related Posts

CVE-2024-23622 | IBM Merge Healthcare eFilm Workstation up to 4.2 stack-based overflow

CVE-2024-1801 | Progress Telerik Reporting prior 18.0.24.130 deserialization

CVE-2023-47618 | TP-Link ER7206 Omada Gigabit VPN Router 1.3.0 Build 20230322 Rel.70591 Web Filtering os command injection (TALOS-2023-1859)

CVE-2024-6911 | PerkinElmer ProcessPlus up to 1.11.6507.0 on Windows file access