CVE-2014-9304
high
CVSS v3
—
CVSS v2
7.5
VIR risk
7.5
Description
Plex Media Server before 0.9.9.3 allows remote attackers to bypass the web server whitelist, conduct SSRF attacks, and execute arbitrary administrative actions via multiple crafted X-Plex-Url headers to system/proxy, which are inconsistently processed by the request handler in the backend web server.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: cve@mitre.org — https://forums.plex.tv/index.php/topic/62832-plex-media-server/?p=583250
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| plex | media_server | {"endIncluding":"0.9.9.2"} | |
References
- http://www.securityfocus.com/archive/1/531290
- https://forums.plex.tv/index.php/topic/62832-plex-media-server/?p=583250
- https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20140228-1_Plex_Media_Server_Authentication_bypass_local_file_disclosure_v10.txt
- http://www.securityfocus.com/archive/1/531290
- https://forums.plex.tv/index.php/topic/62832-plex-media-server/?p=583250
- https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20140228-1_Plex_Media_Server_Authentication_bypass_local_file_disclosure_v10.txt
CWEs
CWE-264
Verify integrity in audit chain (admin only). AS-IS.