CNNVD-202601-700 Information

CNNVD ID

CNNVD-202601-700

Related CVE

CVE-2025-69415

• CNNVD Published: 2026-01-02

Description (Chinese)

Plex media server是Plex公司的一款媒体播放器。 Plex media server 1.42.2.10156及之前版本存在安全漏洞，该漏洞源于使用设备令牌访问/myplex/account的能力与设备当前是否关联账户未正确对齐，可能导致未授权访问。

Description (English)

Plex mediaserver is a media player for Plex. There is a security loophole in the Plex Media servicer 1.42.2.10156 and earlier versions, which stems from the incorrect alignment of the ability to access/myplex/account with the current linkage account of the device with the equipment, which may lead to unauthorized access.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Plex

Published

2026-01-02

Last Modified

2026-02-24

References

https://github.com/lufinkey/vulnerability-research/blob/main/CVE-2025-34158/README.md https://access.redhat.com/security/cve/cve-2025-69415