https://isitpatched.com/jellyfin Security alerts for Jellyfin: newly-exploited CVEs and end-of-life events from IsItPatched. en Compiled by IsItPatched (isitpatched.com) from NVD, CISA KEV, EPSS and endoflife.date. IsItPatched (https://isitpatched.com) https://www.rssboard.org/rss-specification 15 https://isitpatched.com/icon-192.png https://isitpatched.com/jellyfin Thu, 18 Jun 2026 00:34:29 GMT https://isitpatched.com/cve/CVE-2026-35034 jellyfin|CVE-2026-35034 Severity: Medium (CVSS 6.5) · Uncontrolled resource consumption · EPSS 0% Medium IsItPatched Tue, 14 Apr 2026 23:16:28 GMT https://isitpatched.com/cve/CVE-2026-35033 jellyfin|CVE-2026-35033 Severity: Critical (CVSS 9.1) · CWE-88 · EPSS 0% Critical IsItPatched Tue, 14 Apr 2026 23:16:28 GMT https://isitpatched.com/cve/CVE-2026-35032 jellyfin|CVE-2026-35032 Severity: High (CVSS 8.1) · CWE-73 · EPSS 0% High IsItPatched Tue, 14 Apr 2026 23:16:28 GMT https://isitpatched.com/cve/CVE-2026-35031 jellyfin|CVE-2026-35031 Severity: Critical (CVSS 9.9) · Improper input validation · EPSS 1% Critical IsItPatched Tue, 14 Apr 2026 23:16:28 GMT https://isitpatched.com/cve/CVE-2026-31852 jellyfin|CVE-2026-31852 Severity: Critical (CVSS 10) · Improper privilege management · EPSS 0% Critical IsItPatched Wed, 11 Mar 2026 17:16:58 GMT https://isitpatched.com/cve/CVE-2025-31499 jellyfin|CVE-2025-31499 Severity: High (CVSS 8.8) · CWE-88 · EPSS 1% High IsItPatched Tue, 15 Apr 2025 21:16:03 GMT https://isitpatched.com/cve/CVE-2025-32012 jellyfin|CVE-2025-32012 Severity: High (CVSS 7.5) · CWE-290 · EPSS 1% High IsItPatched Tue, 15 Apr 2025 20:15:39 GMT https://isitpatched.com/cve/CVE-2024-43801 jellyfin|CVE-2024-43801 Severity: Medium (CVSS 4.6) · Information disclosure · EPSS 0% Medium IsItPatched Mon, 02 Sep 2024 18:15:36 GMT https://isitpatched.com/cve/CVE-2023-48702 jellyfin|CVE-2023-48702 Severity: High (CVSS 7.2) · Command injection · EPSS 1% High IsItPatched Wed, 13 Dec 2023 21:15:07 GMT https://isitpatched.com/cve/CVE-2023-49096 jellyfin|CVE-2023-49096 Severity: High (CVSS 7.7) · CWE-88 · EPSS 1% High IsItPatched Wed, 06 Dec 2023 20:15:07 GMT https://isitpatched.com/cve/CVE-2023-30627 jellyfin|CVE-2023-30627 Severity: Critical (CVSS 9) · Cross-site scripting (XSS) · EPSS 1% Critical IsItPatched Mon, 24 Apr 2023 21:15:09 GMT https://isitpatched.com/cve/CVE-2023-30626 jellyfin|CVE-2023-30626 Severity: High (CVSS 8.8) · Path traversal · EPSS 2% High IsItPatched Mon, 24 Apr 2023 21:15:09 GMT https://isitpatched.com/cve/CVE-2023-27161 jellyfin|CVE-2023-27161 Severity: High (CVSS 7.5) · Server-side request forgery (SSRF) · EPSS 1% High IsItPatched Fri, 10 Mar 2023 16:15:11 GMT https://isitpatched.com/cve/CVE-2023-23636 jellyfin|CVE-2023-23636 Severity: Medium (CVSS 5.4) · Cross-site scripting (XSS) · EPSS 1% Medium IsItPatched Fri, 03 Feb 2023 01:15:14 GMT https://isitpatched.com/cve/CVE-2023-23635 jellyfin|CVE-2023-23635 Severity: Medium (CVSS 5.4) · Cross-site scripting (XSS) · EPSS 1% Medium IsItPatched Fri, 03 Feb 2023 01:15:14 GMT https://isitpatched.com/cve/CVE-2022-35910 jellyfin|CVE-2022-35910 Severity: Medium (CVSS 5.4) · Cross-site scripting (XSS) · EPSS 1% Medium IsItPatched Fri, 19 Aug 2022 13:15:08 GMT https://isitpatched.com/cve/CVE-2022-35909 jellyfin|CVE-2022-35909 Severity: High (CVSS 8.8) · EPSS 1% High IsItPatched Fri, 19 Aug 2022 13:15:08 GMT https://isitpatched.com/cve/CVE-2021-29490 jellyfin|CVE-2021-29490 Severity: Medium (CVSS 5.8) · Server-side request forgery (SSRF) · EPSS 70% Medium IsItPatched Thu, 06 May 2021 13:15:12 GMT https://isitpatched.com/cve/CVE-2021-21402 jellyfin|CVE-2021-21402 Severity: High (CVSS 7.7) · Path traversal · EPSS 80% High IsItPatched Tue, 23 Mar 2021 20:15:13 GMT