What is CVE-2025-34101?

CVE-2025-34101 is a vulnerability in Serviio Media Server, classified under OS Command Injection. Published 2025-07-10.

Is CVE-2025-34101 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Serviio Media Server

CVE-2025-34101

An unauthenticated command injection vulnerability exists in Serviio Media Server versions 1.4 through 1.8 on Windows, in the /rest/action API endpoint exposed by the console component (default port 23423). The checkStreamUrl method accept…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.689 (98.6th percentile) — read the EPSS interpretation.

Affected products

Serviio Media Server — versions 1.4

Weakness classification (CWE)

Public proof-of-concept exploits

References

www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5408.php (third-party-advisory, exploit)
packetstorm.news/files/id/142387 (exploit)
fortiguard.fortinet.com/encyclopedia/ips/44042 (third-party-advisory)
raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/w… (exploit)
vulncheck.com/advisories/serviio-media-server-unauthenticated-command-injection (third-party-advisory)
www.exploit-db.com/exploits/42023 (exploit)

Frequently asked questions

What is CVE-2025-34101?: CVE-2025-34101 is a vulnerability in Serviio Media Server, classified under OS Command Injection. Published 2025-07-10.
Is CVE-2025-34101 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.