ID CVE-2018-13415
Summary In Plex Media Server 1.13.2.5154, the XML parsing engine for SSDP/UPnP functionality is vulnerable to an XML External Entity Processing (XXE) attack. Remote, unauthenticated attackers can use this vulnerability to: (1) Access arbitrary files from the filesystem with the same permission as the user account running Plex, (2) Initiate SMB connections to capture a NetNTLM challenge/response and crack to cleartext password, or (3) Initiate SMB connections to relay a NetNTLM challenge/response and achieve Remote Command Execution in Windows domains.
References
Vulnerable Configurations
  • cpe:2.3:a:plex:media_server:1.13.2.5154:*:*:*:*:*:*:*
    cpe:2.3:a:plex:media_server:1.13.2.5154:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 18-10-2018 - 17:46)
Impact:
Exploitability:
CWE CWE-611
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
assigner via4 cve@mitre.org
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
exploit-db 45146
fulldisc 20180802 (CVE-2018-13415) Out-of-Band XXE in Plex Media Server
vulnerable_product via4 cpe:2.3:a:plex:media_server:1.13.2.5154:*:*:*:*:*:*:*
Last major update 18-10-2018 - 17:46
Published 13-08-2018 - 17:29
Back to Top