HarborGuardharborguardDatabase
Back to search
CRITICALCVE-2026-43986Published Modified CNA GitHub_M

CVE-2026-43986: Tautulli vulnerable to unauthenticated SSRF in /image/<hash> via attacker-seeded image hash replay

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public `/image/<hash>` route that resolves attacker-controlled entries from `image_hash_lookup` and replays them through the same server-side image fetch logic used by authenticated image proxying. A low-privilege guest user can seed a malicious external image URL into this lookup table and then trigger server-side fetches through a fully unauthenticated endpoint. This turns an authenticated SSRF primitive into a persistent unauthenticated SSRF gadget. Once the malicious hash entry exists, any external user can request `/image/<hash>.png` and cause the PMS or Tautulli host to fetch an arbitrary attacker-chosen URL. Version 2.17.1 patches the issue.

Metrics

CVSS v3.1
9.9
Severity
CRITICAL
Fixed in
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

This is a server-side request forgery (SSRF) vulnerability in Tautulli, a Python-based monitoring tool for Plex Media Server. A low-privilege authenticated user can seed a malicious URL into Tautulli's internal image hash lookup table, and from that point on any unauthenticated external user can trigger the Tautulli or Plex Media Server host to fetch arbitrary attacker-chosen URLs by requesting a public `/image/<hash>` endpoint. Successful exploitation enables internal network scanning, exfiltration of cloud metadata credentials, and further lateral movement against services reachable from the Tautulli host. A patched-image rebuild at version 2.17.1 is available on HarborGuard for environments running an affected version.

HarborGuard Coverage

Detection

Detection of CVE-2026-43986 is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against all customer images, including custom-built images derived from Tautulli base layers. Any image carrying a Tautulli version below 2.17.1 is flagged automatically.

Available
Triage

Triage is available with CVSS v3.1 scoring applied at a score of 9.9 (Critical), weighted further against each customer organization's compliance policy and asset criticality context. Findings are routed to the appropriate team inbox within each customer environment based on configured ownership rules.

Available
Patch

Because no upstream fix version has been published yet, HarborGuard re-checks the advisory on every ingest cycle and will make a patched-image rebuild available the moment an upstream fix is released. For customers with auto-remediation enabled, the rebuild, regression test run, and pull request against affected workloads will be triggered automatically as soon as the patch lands.

Pending upstream

Exploit Conditions

  • Network reachabilityRequired

    The attacker must reach the Tautulli service over the network to seed the malicious hash entry and to trigger the unauthenticated `/image/<hash>` endpoint.

  • AuthenticationRequired

    Seeding the malicious image hash requires a low-privilege authenticated account (such as a guest user), though any account type is sufficient; subsequent exploitation of the seeded hash is fully unauthenticated.

  • Victim interactionNot required

    No victim interaction is needed; once the malicious hash entry is seeded, the SSRF can be triggered by any external HTTP request without user involvement.

  • Attack complexityDetail

    Attack complexity is low, meaning the exploit is reliable and requires no special timing, race conditions, or environmental prerequisites beyond having a valid low-privilege account for the initial seeding step.

Blast Radius

  • The Tautulli or Plex Media Server host fetches arbitrary attacker-chosen URLs, enabling full internal network scanning against services not otherwise exposed externally.
  • Cloud instance metadata endpoints (such as the AWS EC2 metadata service at 169.254.169.254) are reachable, allowing an attacker to read IAM role credentials and session tokens.
  • Internal administrative APIs and unauthenticated management interfaces on the host network can be probed and interacted with via the forged server-side requests.
  • The vulnerability is persistent once seeded: the malicious hash entry remains in the lookup table and can be repeatedly triggered by any external user until the entry is purged or the service is patched.

How HarborGuard Handles This

Available on HarborGuard: detection of this CVE is matched against all customer images on every pipeline run, flagging any Tautulli image below version 2.17.1 as Critical. Because no upstream fix version has been published as of the CVE publication date, HarborGuard monitors the advisory on each ingest cycle and will make a patched-image rebuild available automatically once an upstream release is confirmed. For customers with auto-remediation enabled, the rebuild and regression run will trigger immediately, and a pull request will be opened against affected workloads without manual intervention. In the interim, compensating controls available for consideration include isolating Tautulli hosts behind a network policy that restricts egress to known-good destinations, blocking outbound HTTP/HTTPS from the Tautulli process to RFC-1918 and link-local address ranges, and auditing the `image_hash_lookup` table for unexpected external URL entries. Customers whose compliance policies require manual approval before remediation will receive the finding in their configured routing inbox with full CVSS context attached.

See how HarborGuard automates this
Affected packages
  • Tautulli / Tautulli
    < 2.17.1
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L
References