CNNVD-202601-484 Information
Jan 02, 2026
cve
CNNVD ID
CNNVD-202601-484
Related CVE
- CNNVD Published: 2026-01-02
Description (Chinese)
Plex media server是Plex公司的一款媒体播放器。 Plex Media Server 1.42.2.10156及之前版本存在安全漏洞,该漏洞源于可通过瞬时访问令牌调用/myplex/account检索永久访问令牌,可能导致访问令牌泄露。
Description (English)
Plex mediaserver is a media player for Plex. There is a security loophole in Plex Media Server 1.42.2.10156 and earlier versions, which stems from the possibility of permanent access to the tokens through instant access to their call/myplex/account, which could lead to their disclosure.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Plex
Published
2026-01-02
Last Modified
2026-02-24
References
https://github.com/lufinkey/vulnerability-research/blob/main/CVE-2025-34158/README.md https://access.redhat.com/security/cve/cve-2025-69414
Share on: