Owntone Vulnerabilities
Comprehensive security vulnerability database for Owntone products
1
1
0
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2021-38383 | 9.8 | This vulnerability allows an attacker to execute arbitrary code on the OwnTone server, potentially taking control of the system. It occurs due to a flaw in the way the server handles memory, but the attacker must be able to send specially crafted network requests to exploit it. | owntoneowntone server | Theoretical | over 4 years agoAug 10, 2021 |
About Owntone Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Owntone products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.