215 matches found
Plex Media Server < 1.18.2 Privilege Escalation
According to its self-reported version number, the version of Plex Media Server installed on the remote Windows host is prior to 1.18.2. It is, therefore, affected by a local privilege escalation vulnerability. The vulnerability exists in the Plex Update Service due to exposed functionality over ...
Plex Media Server Detection
Binary data plexdetect.nbin...
Plex Media Server < 1.19.3 RCE Vulnerability
Plex Media Server is prone to an authenticated remote code execution RCE vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...
Plex Media Server Code Issue Vulnerability
Plex Media Server is a media player and media server software. A security vulnerability exists in Plex Media Server Windows versions prior to 1.19.3. A remote attacker can exploit this vulnerability to execute arbitrary Python code in the context of the current OS user...
CVE-2020-5741
Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated attacker to execute arbitrary Python code...
CVE-2020-5741
Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated attacker to execute arbitrary Python code...
Deserialization of untrusted data
Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated attacker to execute arbitrary Python code...
CVE-2020-5741
Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated attacker to execute arbitrary Python code...
CVE-2020-5741
Plex Media Server on Windows prior to version 1.19.3 is affected by CVE-2020-5741: an authenticated attacker can trigger unsafe Python pickle deserialization (Dict file) during camera-upload related processing, leading to remote code execution as the OS user who runs Plex. Public references descr...
CVE-2020-5741
Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated attacker to execute arbitrary Python code...
PT-2020-6851 · Plex · Plex Media Server
Name of the Vulnerable Software and Affected Versions: Plex Media Server affected versions not specified Description: The issue concerns the deserialization of untrusted data in Plex Media Server, allowing a remote, authenticated attacker to execute arbitrary Python code. This can be exploited by...
CVE-2020-5741
Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated attacker to execute arbitrary Python code. Recent assessments: zeroSteiner at November 11, 2020 6:24pm UTC reported: A vulnerability exists within Plex that allows an authenticated attacker to submit...
Plex Media Server < 1.19.2.2673 Local Code Execution Vulnerability
Plex Media Server is prone to a local unauthenticated code execution vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...
Plex Media Server Input Validation Error Vulnerability
Plex Media Server is a media player and media server software. A security vulnerability exists in Plex Media Server Windows that stems from faulty access control. A local attacker can exploit the vulnerability to execute arbitrary Python code with SYSTEM privileges...
CVE-2020-5740
Improper Input Validation in Plex Media Server on Windows allows a local, unauthenticated attacker to execute arbitrary Python code with SYSTEM privileges...
CVE-2020-5740
Improper Input Validation in Plex Media Server on Windows allows a local, unauthenticated attacker to execute arbitrary Python code with SYSTEM privileges...
Input validation
Improper Input Validation in Plex Media Server on Windows allows a local, unauthenticated attacker to execute arbitrary Python code with SYSTEM privileges...
CVE-2020-5740
Plex Media Server (Windows) is affected by CVE-2020-5740 due to improper input validation. The vulnerability allows a local, unauthenticated attacker to execute arbitrary Python code with SYSTEM privileges through the Plex update service/related input handling. This is a local privilege-escalatio...
CVE-2020-5740
Improper Input Validation in Plex Media Server on Windows allows a local, unauthenticated attacker to execute arbitrary Python code with SYSTEM privileges...
Plex Media Server < 1.18.2.2041 RCE Vulnerability
Plex Media Server is prone to an authenticated remote code execution RCE vulnerability in the Camera Upload feature. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...