Browse all 9 CVE security advisories affecting Emby. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Emby is a media server application that organizes and streams personal video, music, and photo collections to various devices. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting attacks, and privilege escalation flaws, with nine CVEs documented. Security researchers have identified issues related to improper input validation and insecure default configurations. While no major public security incidents have been widely reported, the consistent presence of vulnerabilities in areas like authentication and API endpoints highlights the importance of regular updates and hardening for deployments handling sensitive media content.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-46385 | Emby Windows 代码问题漏洞 — WindowsCWE-918 | 8.6 | High | 2025-07-20 |
| CVE-2025-46384 | Emby Windows 代码问题漏洞 — WindowsCWE-434 | 8.8 | High | 2025-07-20 |
| CVE-2025-46383 | Web和ring 跨站脚本漏洞 — WindowsCWE-79 | 6.1 | Medium | 2025-07-20 |
This page lists every published CVE security advisory associated with Emby. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.