Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Jan 2, 2026· Updated Jan 2, 2026

CVE-2025-69414

CVE-2025-69414

Description

Plex Media Server (PMS) through 1.42.2.10156 allows retrieval of a permanent access token via a /myplex/account call with a transient access token.

Affected products

2

Plexcor/Media Serverllm-fuzzy
Range: <=1.42.2.10156
Plex/Media Serverv5
Range: 0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

github.com/lufinkey/vulnerability-research/blob/main/CVE-2025-34158/README.mdmitre

News mentions

0

No linked articles in our index yet.