CVE-2026-35034 | Jellyfin up to 10.11.6 SyncPlay Group Creation Endpoint /SyncPlay/New resource consumption (GHSA-v2jv-54xj-h76w)

A vulnerability classified as problematic has been found in Jellyfin up to 10.11.6. This affects an unknown function of the file /SyncPlay/New of the component SyncPlay Group Creation Endpoint. The manipulation leads to resource consumption.

This vulnerability is traded as CVE-2026-35034. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More