CVE-2022-35909

Published August 19th, 2022

View on NVD ↗

CVSS v3

8.8

HIGH

CVSS v2

N/A

Affected

1

PROJECT

Description

In Jellyfin before 10.8, the /users endpoint has incorrect access control for admin functionality.

jellyfin/jellyfin

The Free Software Media System - Server Backend & API

GitHub

53.7K