CVE-2018-21031

moderate-risk

Published 2019-11-18

Tautulli versions 2.1.38 and below allows remote attackers to bypass intended access control in Plex Media Server because the X-Plex-Token is mishandled and can be retrieved from Tautulli. NOTE: Initially, this id was associated with Plex Media Server 1.18.2.2029-36236cc4c as the affected product and version. Further research indicated that Tautulli is the correct affected product.

Do I need to act?

0.18% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.5/10 Medium

NETWORK / LOW complexity

Affected Products (1)

Media Server

Affected Vendors

Plex

References (8)

Third Party Advisory https://forums.plex.tv/t/security-regarding-cve-2018-21031/493286

Third Party Advisory https://twitter.com/GerardFuguet/status/1009937529573912576

Exploit https://www.elladodelmal.com/2018/08/shodan-es-de-cine-hacking-tautulli-un.html

Exploit https://www.exploit-db.com/docs/47790

Third Party Advisory https://forums.plex.tv/t/security-regarding-cve-2018-21031/493286

Third Party Advisory https://twitter.com/GerardFuguet/status/1009937529573912576

Exploit https://www.elladodelmal.com/2018/08/shodan-es-de-cine-hacking-tautulli-un.html

Exploit https://www.exploit-db.com/docs/47790

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 1/34 · Minimal

Exposure 5/34 · Minimal