CVE-2023-49096 | Jellyfin up to 10.8.12 /Videos//stream argument injection

Posted by Angelo Barbosa | Dec 6, 2023 | CVE

A vulnerability was found in Jellyfin up to 10.8.12 and classified as critical. This issue affects some unknown processing of the file /Videos//stream. The manipulation leads to argument injection.

The identification of this vulnerability is CVE-2023-49096. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49096 | Jellyfin up to 10.8.12 /Videos//stream argument injection

Related Posts

CVE-2024-28446 | Shenzhen Libituo Technology LBT-T300-mini1 1.2.9 /apply.cgi lan_netmask buffer overflow

Eclipse Parsson JSON Parser denial of service

CVE-2023-46231 | Splunk Add-on Builder up to 4.1.3 Session Token log file (SVD-2024-0110)

CVE-2024-2343 | Avada Plugin up to 7.11.6 on WordPress form_to_url_action server-side request forgery