Known Vulnerabilities for products from Tautulli

Listed below are 7 of the newest known vulnerabilities associated with the vendor "Tautulli".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-32275 json Tautulli is a Python based monitoring and tracking tool for Plex Media Server. From version 1.3.10 to before version 2.17.0, ... Not Provided 2026-03-30 2026-04-02
CVE-2026-31831 json Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /newsletter/image... Not Provided 2026-03-30 2026-04-02
CVE-2026-31804 json Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /pms_image_proxy ... Not Provided 2026-03-30 2026-04-14
CVE-2026-31799 json Tautulli is a Python based monitoring and tracking tool for Plex Media Server. From version 2.14.2 to before version 2.17.0 f... Not Provided 2026-03-30 2026-04-02
CVE-2026-28505 json Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the str_eval() functi... Not Provided 2026-03-30 2026-04-02
CVE-2019-19833 json In Tautulli 2.1.9, CSRF in the /shutdown URI allows an attacker to shut down the remote media server. (Also, anonymous access... 6.5 - MEDIUM 2019-12-18 2023-02-01
CVE-2019-8939 json data/interfaces/default/history.html in Tautulli 2.1.26 has XSS via a crafted Plex username that is mishandled when construct... 6.1 - MEDIUM 2019-02-19 2019-02-27

Known software with vulnerabilities from Tautulli

Type Vendor Product Version
ApplicationTautulliTautulli1.0