ACTIVELY EXPLOITED3 sources verified·1 min read
By Lyrie Threat Intelligence·3/10/2023
CVE-2020-5741 added to CISA KEV: Plex Media Server
Status: ✅ Confirmed exploited in the wild
Date added: 2023-03-10
Required action: Apply updates per vendor instructions.
Due date: 2023-03-31
Why this matters
Plex Media Server contains a remote code execution vulnerability that allows an attacker with access to the server administrator's Plex account to upload a malicious file via the Camera Upload feature and have the media server execute it.
Sources
Lyrie Verdict
Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.