CVE-2021-25827

Published
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
N/A
Affected
2
PROJECTS

Description

Emby Server < 4.7.12.0 is vulnerable to a login bypass attack by setting the X-Forwarded-For header to a local IP-address.

EmbySupport/Emby.Security
EmbySupport/Emby.Security
Security advisories and private vulnerability reporting for Emby
GitHubGitHub
5
MediaBrowser/Emby
MediaBrowser/Emby
Emby Server is a personal media server with apps on just about every device.
GitHubGitHub
4.9K