CVE-2025-32943 Information

Description

The vulnerability allows any authenticated user to leak the contents of arbitrary “.m3u8” files from the PeerTube server due to a path traversal in the HLS endpoint.

Reference

https://github.com/Chocobozzz/PeerTube/releases/tag/v7.1.1 https://research.jfrog.com/vulnerabilities/peertube-hls-path-traversal/ https://research.jfrog.com/vulnerabilities/peertube-hls-path-traversal/