Lucene search
K

6 matches found

EUVD
EUVD
added 2026/03/30 7:42 p.m.4 views

EUVD-2026-17192

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /newsletter/image/images API endpoint is vulnerable to path traversal, allowing unauthenticated attackers to read arbitrary files from the application server's filesystem. This issue has be...

8.7CVSS5.9AI score0.00477EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/30 7:42 p.m.3 views

CVE-2026-31831 Tautulli: Unauthenticated Path Traversal in `/newsletter/image/images` endpoint

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /newsletter/image/images API endpoint is vulnerable to path traversal, allowing unauthenticated attackers to read arbitrary files from the application server's filesystem. This issue has be...

8.7CVSS5.9AI score0.00477EPSS
Exploits1References2
OSV
OSV
added 2026/03/30 7:42 p.m.5 views

CVE-2026-31831 Tautulli: Unauthenticated Path Traversal in `/newsletter/image/images` endpoint

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /newsletter/image/images API endpoint is vulnerable to path traversal, allowing unauthenticated attackers to read arbitrary files from the application server's filesystem. This issue has be...

8.7CVSS5.9AI score0.00477EPSS
Exploits1References4
CVE
CVE
added 2026/03/30 7:42 p.m.12 views

CVE-2026-31831

CVE-2026-31831 affects the Python-based Plex monitor Tautulli. Prior to version 2.17.0, the /newsletter/image/images endpoint allows path traversal, enabling unauthenticated read of arbitrary files on the server. This vulnerability is patched in version 2.17.0. Reported in multiple feeds (NVD, Re...

8.7CVSS5.9AI score0.00477EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/03/30 7:42 p.m.25 views

CVE-2026-31831 Tautulli: Unauthenticated Path Traversal in `/newsletter/image/images` endpoint

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /newsletter/image/images API endpoint is vulnerable to path traversal, allowing unauthenticated attackers to read arbitrary files from the application server's filesystem. This issue has be...

8.7CVSS0.00477EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.11 views

Tautulli 安全漏洞

Tautulli is an open-source application developed by Tautulli for monitoring Plex Media Server. Versions of Tautulli prior to 2.17.0 contained security vulnerabilities. These vulnerabilities were due to a path traversal issue with the /newsletter/image/images API endpoints, which could lead to...

8.7CVSS5.9AI score0.00477EPSS
Exploits1References3
Rows per page
Query Builder