Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Plex Media Server (PMS) through 1.42.2.10156, ability to access /myplex/account with a device token is not properly aligned with whether the device is currently associated with an account.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N
Vulnerability Type
在过期或释放后对资源进行操作
Vulnerability Title
Plex media server 安全漏洞
Vulnerability Description
Plex media server是Plex公司的一款媒体播放器。 Plex media server 1.42.2.10156及之前版本存在安全漏洞,该漏洞源于使用设备令牌访问/myplex/account的能力与设备当前是否关联账户未正确对齐,可能导致未授权访问。
CVSS Information
N/A
Vulnerability Type
N/A