CVE-2025-32012 | Jellyfin up to 10.10.6 Endpoint /System/Restart authentication spoofing

A vulnerability was found in Jellyfin up to 10.10.6. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /System/Restart of the component Endpoint. The manipulation leads to authentication bypass by spoofing.

This vulnerability is handled as CVE-2025-32012. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More