Plex Plex.Tv Backend vulnerabilities
2 known vulnerabilities affecting plex/plex.tv_backend.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2025-69416P4MEDIUMCVSS 4.3≤ 2025-12-312026-01-02
CVE-2025-69416 [MEDIUM] CWE-863 CVE-2025-69416: In the plex.tv backend for Plex Media Server (PMS) through 2025-12-31, a non-server device token can
In the plex.tv backend for Plex Media Server (PMS) through 2025-12-31, a non-server device token can retrieve other tokens (intended for unrelated access) via clients.plex.tv/devices.xml.
nvd
CVE-2025-69417P4MEDIUMCVSS 4.3≤ 2025-12-312026-01-02
CVE-2025-69417 [MEDIUM] CWE-863 CVE-2025-69417: In the plex.tv backend for Plex Media Server (PMS) through 2025-12-31, a non-server device token can
In the plex.tv backend for Plex Media Server (PMS) through 2025-12-31, a non-server device token can retrieve share tokens (intended for unrelated access) via a shared_servers endpoint.
nvd