Every CVE whose affected-product data names Futo Immich, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2026-25118 — CVSS 7.5 (high): immich is a high performance self-hosted photo and video management solution. Prior to version 2.6.0, the Immich application is vulnerable…
CVE-2026-35455 — CVSS 7.3 (high): immich is a high performance self-hosted photo and video management solution. Prior to 2.7.0, sStored Cross-Site Scripting (XSS) in the…
CVE-2026-23896 — CVSS 7.2 (high): immich is a high performance self-hosted photo and video management solution. Prior to version 2.5.0, API keys can escalate their own…
CVE-2026-40096 — CVSS 5.4 (medium): immich is a high performance self-hosted photo and video management solution. Versions prior to 2.7.3 contain an open redirect…