Description
Jellyfin is an open source self hosted media server. Prior to 10.11.10, a specifically crafted MKV file containing forged filename tags can be leveraged to exploit missing path sanitization during playback. Jellyfin treats the MKV file name tag on MKV attachments as trusted and passes it unsanitized into Path.Combine(attachmentFolder, fileName) inside PathManager.GetAttachmentPath. Because .NET's Path.Combine neither normalises .. nor rejects a rooted second argument, a crafted MKV can redirect Jellyfin's MKV attachment extraction to any absolute path on disk. This triggers on any playback action of the affected video on a client which will attempt to burn in the subtitles by default.g This vulnerability is fixed in 10.11.10.
Published: 2026-06-24
Score: 1.7 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A crafted MKV file can exploit Jellyfin’s lack of path sanitization when reading attachment filenames. The vulnerability allows the attacker to redirect the extraction of attachment files to an arbitrary absolute path on the server’s disk, potentially overwriting critical files. Such an overwrite could lead to execution of arbitrary code or other malicious actions, compromising both confidentiality and integrity of the system.

Affected Systems

The issue affects Jellyfin servers prior to version 10.11.10. Any user adding or playing a malicious MKV file within the media library is susceptible. The product is the open‑source Jellyfin media server.

Risk and Exploitability

The CVSS score of 1.7 indicates a low severity metric, but the ability to write to arbitrary locations makes this a high‑impact flaw when exploited. The EPSS score is unavailable, so the likelihood of exploitation is unknown, and the vulnerability is not currently listed in CISA’s KEV catalog. The likely attack vector is a file upload or playback action with a specially crafted MKV, making the flaw exploitable by anyone who can introduce such a file into the server’s media library.

Generated by OpenCVE AI on June 24, 2026 at 21:04 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Jellyfin to version 10.11.10 or later, which includes the path sanitization fix.
  • Remove any previously added MKV files that contain forged attachment filenames before playback or processing.
  • Configure the server to disable automatic subtitle extraction during playback to avoid executing the vulnerable attachment extraction code.

Generated by OpenCVE AI on June 24, 2026 at 21:04 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 25 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 25 Jun 2026 06:30:00 +0000

Type Values Removed Values Added
First Time appeared Jellyfin
Jellyfin jellyfin
Vendors & Products Jellyfin
Jellyfin jellyfin

Wed, 24 Jun 2026 18:45:00 +0000

Type Values Removed Values Added
Description Jellyfin is an open source self hosted media server. Prior to 10.11.10, a specifically crafted MKV file containing forged filename tags can be leveraged to exploit missing path sanitization during playback. Jellyfin treats the MKV file name tag on MKV attachments as trusted and passes it unsanitized into Path.Combine(attachmentFolder, fileName) inside PathManager.GetAttachmentPath. Because .NET's Path.Combine neither normalises .. nor rejects a rooted second argument, a crafted MKV can redirect Jellyfin's MKV attachment extraction to any absolute path on disk. This triggers on any playback action of the affected video on a client which will attempt to burn in the subtitles by default.g This vulnerability is fixed in 10.11.10.
Title Jellyfin: Potential MKV attachment filename path traversal to RCE
Weaknesses CWE-22
References
Metrics cvssV4_0

{'score': 1.7, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U'}


Subscriptions

Jellyfin Jellyfin
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-25T20:00:30.296Z

Reserved: 2026-05-28T14:33:01.178Z

Link: CVE-2026-49246

cve-icon Vulnrichment

Updated: 2026-06-25T20:00:27.944Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-25T06:15:15Z

Weaknesses
  • CWE-22

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')