CNNVD-202509-1147 Information

CNNVD ID

CNNVD-202509-1147

Related CVE

CVE-2025-58763

• CNNVD Published: 2025-09-09

Description (Chinese)

Tautulli是Tautulli开源的一款用于监控Plex Media Server（媒体服务器）的应用程序。 Tautulli 2.15.3及之前版本存在操作系统命令注入漏洞，该漏洞源于命令注入漏洞，可能导致远程代码执行。

Description (English)

Tautulli is a Tautulli Open Source application to monitor Plex Media Server. Tautulli 2.15.3 and earlier versions had a gap in the operating system command, which stemmed from a gap in the command, which could lead to remote code enforcement.

Hazard Level

Medium

Vulnerability Type

操作系统命令注入

Affected Vendor

TDM Digital Signage

Published

2025-09-09

Last Modified

2026-02-24

References

https://github.com/Tautulli/Tautulli/security/advisories/GHSA-jrm9-r57q-6cvf https://access.redhat.com/security/cve/cve-2025-58763

Patch

https://github.com/Tautulli/Tautulli/releases