CVE-2026-40605EPSS p21.8%

CVE-2026-40605CVE-2026-40605

Description

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.1, a path traversal vulnerability in the cache deletion endpoint allows authenticated API access to delete directories outside the configured cache path. This can cause arbitrary data loss and service disruption. Version 2.17.1 fixes the issue.

Scoring

EPSS0.30% probability of exploitation · percentile 21.8% · 2026-06-18T12:00:27Z
Last modified2026-06-04

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-41065
CVE
CVE-2026-32275
CVE
CVE-2026-43985
CVE
CVE-2026-43986
CVE
CVE-2026-28505
CVE
CVE-2026-43984
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.