FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
98f78c7a-a08e-11ed-946e-002b67dfc673	Plex Media Server -- security vulnerability Plex Security Team reports: We have recently been made aware of a security vulnerability in Plex Media Server versions prior to 1.25.0 that could allow a local Windows user to obtain administrator privileges without authorization. To be clear, this required the user to already have local, physical access to the computer (just with a different user account on Windows). There are no indications that this exploit could be used from a remote machine. Plex Media Server versions 1.25.0.5282 and newer are not subject to this vulnerability, and feature additional hardening to prevent similar issues from occurring in the future. Users running older server versions are encouraged to update their Plex Media Server installations. Discovery 2021-10-22 Entry 2023-01-30 plexmediaserver plexmediaserver-plexpass < 1.25.0 CVE-2021-42835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42835

VuXML ID

Description

98f78c7a-a08e-11ed-946e-002b67dfc673

Plex Media Server -- security vulnerability

Plex Security Team reports:

We have recently been made aware of a security vulnerability in Plex Media Server versions prior to 1.25.0 that could allow a local Windows user to obtain administrator privileges without authorization. To be clear, this required the user to already have local, physical access to the computer (just with a different user account on Windows). There are no indications that this exploit could be used from a remote machine.

Plex Media Server versions 1.25.0.5282 and newer are not subject to this vulnerability, and feature additional hardening to prevent similar issues from occurring in the future. Users running older server versions are encouraged to update their Plex Media Server installations.

Discovery 2021-10-22
Entry 2023-01-30
plexmediaserver
plexmediaserver-plexpass

< 1.25.0

CVE-2021-42835
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42835