5 matches found
CVE-2020-5741
Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated attacker to execute arbitrary Python code...
LastPass Hack: Engineer's Failure to Update Plex Software Led to Massive Data Breach
The massive breach at LastPass was the result of one of its engineers failing to update Plex on their home computer, in what's a sobering reminder of the dangers of failing to keep software up-to-date. The embattled password management service last week revealed how unidentified actors leveraged...
Plex Unpickle Dict Windows Remote Code Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Plex Unpickle Dict Windows RCE', 'Description' = %q This module exploits an authenticated Python unsafe pickle.load of a Dict file. An...
CVE-2020-5741
creationtimestamp| type| source ---|---|--- 2020-07-16 15:38:10+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/plexunpickledictrce.rb 2021-03-20 16:59:08+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2942 2023-06-1...
CVE-2020-5741
Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated attacker to execute arbitrary Python code...