Detections
Analytics
Plex Media Server < 1.19.3 Authenticated RCE
high Nessus Plugin ID 137326
Language:
Synopsis
A client-server media player running on the remote host is affected by a remote code execution vulnerability.Description
According to its self-reported version number, the version of Plex Media Server installed on the remote Windows host is prior to 1.19.3. It is, therefore, affected by an authenticated remote code execution vulnerability in the camera upload feature. An authenticated, remote attacker can exploit this, by uploading a malicious file via the camera upload feature, to cause arbitrary python code to be executed in the context of the current OS user..Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Plex Media Server version 1.19.3 or later.See Also
https://www.tenable.com/security/research/tra-2020-32
https://forums.plex.tv/t/security-regarding-cve-2020-5741/586819
Plugin Details
Severity: High
ID: 137326
File Name: plex_1_19_3.nasl
Version: 1.7
Type: combined
Agent: windows
Family: Windows
Published: 6/11/2020
Updated: 6/4/2024
Supported Sensors: Nessus Agent, Nessus
Enable CGI Scanning: true
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 5.7
Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS Score Source: CVE-2020-5741
CVSS v3
Risk Factor: High
Base Score: 7.2
Temporal Score: 6.9
Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:plex:plex_media_server
Required KB Items: Host/OS, installed_sw/Plex Media Server
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 5/7/2020
Vulnerability Publication Date: 5/7/2020
CISA Known Exploited Vulnerability Due Dates: 3/31/2023
Exploitable With
Metasploit (Plex Unpickle Dict Windows RCE)
Reference Information
CVE: CVE-2020-5741