Cyber Resilience

CVE-2026-35032

HighPublic PoC

Published: 14 April 2026

Published
14 April 2026
Modified
23 April 2026
KEV Added
Patch
CVSS Score v4 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0031 22.8th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2026-35032 is a high-severity External Control of File Name or Path (CWE-73) vulnerability in Jellyfin Jellyfin. Its CVSS base score is 8.6 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 22.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 AC-6 (Least Privilege) and SI-10 (Information Input Validation).

Deeper analysis

CVE-2026-35032 is a vulnerability chain affecting Jellyfin, an open-source self-hosted media server, in versions prior to 10.11.7. The issue resides in the LiveTV M3U tuner endpoint (POST /LiveTv/TunerHosts), where the tuner URL lacks proper validation. This enables local file reads through non-HTTP paths and Server-Side Request Forgery (SSRF) via HTTP URLs. The vulnerability is associated with CWE-73 (External Control of File Name or Path) and CWE-918 (SSRF), earning a CVSS v3.1 base score of 8.1 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N).

Any authenticated user can exploit this vulnerability, as the EnableLiveTvManagement permission defaults to true for all new users. An attacker chains the flaws by adding an M3U tuner host pointing to a server they control, which serves a crafted M3U playlist containing a channel that targets the Jellyfin database file. This allows exfiltration of the database, from which admin session tokens can be extracted to escalate privileges to administrator level.

The vulnerability has been addressed in Jellyfin version 10.11.7. For users unable to upgrade immediately, the advisory recommends disabling Live TV Management privileges for all users. Additional details are available in the Jellyfin release notes at https://github.com/jellyfin/jellyfin/releases/tag/v10.11.7 and the security advisory at https://github.com/jellyfin/jellyfin/security/advisories/GHSA-8fw7-f233-ffr8.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

Jellyfin is an open source self hosted media server. Versions prior to 10.11.7 contain a vulnerability chain in the LiveTV M3U tuner endpoint (POST /LiveTv/TunerHosts), where the tuner URL is not validated, allowing local file read via non-HTTP paths and…

more

Server-Side Request Forgery (SSRF) via HTTP URLs. This is exploitable by any authenticated user because the EnableLiveTvManagement permission defaults to true for all new users. An attacker can chain these vulnerabilities by adding an M3U tuner pointing to an attacker-controlled server, serving a crafted M3U with a channel pointing to the Jellyfin database, exfiltrating the database to extract admin session tokens, and escalating to admin privileges. This issue has been fixed in version 10.11.7. If users are unable to upgrade immediately, they can disable Live TV Management privileges for all users.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

The vulnerability in the public-facing Jellyfin media server (via unauthenticated validation flaws in the LiveTV tuner endpoint) is directly exploited by low-privileged authenticated users to read local database files and extract admin session tokens, enabling privilege escalation to administrator level.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-35031Same product: Jellyfin Jellyfin
CVE-2026-35033Same product: Jellyfin Jellyfin
CVE-2026-31852Same product: Jellyfin Jellyfin
CVE-2025-59503Shared CWE-918
CVE-2026-30810Shared CWE-918
CVE-2026-26138Shared CWE-918
CVE-2026-26137Shared CWE-918
CVE-2024-22341Shared CWE-73
CVE-2026-33107Shared CWE-918
CVE-2024-48590Shared CWE-918

Affected Assets

jellyfin
jellyfin
≤ 10.11.7

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly addresses the lack of validation on tuner URLs, preventing local file reads via path traversal and SSRF via arbitrary HTTP requests.

prevent

Enforces least privilege by restricting EnableLiveTvManagement permission, preventing exploitation by non-admin authenticated users as recommended in the advisory.

prevent

Remediates the vulnerability chain by applying the patch to Jellyfin version 10.11.7, eliminating the unvalidated tuner endpoint flaws.

References