exploitDog

CVE-2025-69415

Опубликовано: 02 янв. 2026

Источник: nvd

CVSS3: 7.1

EPSS Низкий

Описание

In Plex Media Server (PMS) through 1.42.2.10156, ability to access /myplex/account with a device token is not properly aligned with whether the device is currently associated with an account.

Ссылки

https://github.com/lufinkey/vulnerability-research/blob/main/CVE-2025-34158/README.md

EPSS

Процентиль: 15%

0.0005

Низкий

7.1 High

CVSS3

Дефекты

CWE-672

Связанные уязвимости

GHSA-r6cx-vw2q-5gqg

CVSS3: 7.1

github

около 1 месяца назад

In Plex Media Server (PMS) through 1.42.2.10156, ability to access /myplex/account with a device token is not properly aligned with whether the device is currently associated with an account.

EPSS

Процентиль: 15%

0.0005

Низкий

7.1 High

CVSS3

Дефекты

CWE-672