Just came across this article on Gizmodo dated February 6, 2021, “Plex Media Has A Big Security Flaw.”
Plex Media Has a Big Security Flaw
Seems to say Plex SSDP is being used to create “Plex DDOS” attacks due to the way Plex reaches out to the internet.
Uh, is this something I need to worry about? Do I need to configure my router in a special way to keep Plex within it’s boundaries? Is this a bug they are working to resolve? Or is this an over hyped non-issue?
Just update to the latest version. There are already threads on this as you can imagine so do a search.
You’re late:
Thanks, that makes me feel better. Gonna check for updates right now.
Yeah. To their credit it was handled quickly and efficiently.
Thank you for the links @tom80H . Kudos to the Plex team for getting this knocked out so quickly. This team clearly takes security seriously.
The party is over, correct Tom…
This was a good wake up call to all, review your network settings and check your firewall is protecting your network. Consider a good VPN for everyday use outside Plex.
Glad to see it finally addressed.
I tried to get someone to fix this before releasing the issue on Github 16 months ago!
If only I knew the forums might have been the best place to raise it back then, to have to wait for Netscout to release their report instead.
Thanks to the devs for being smart and swift about it all.
16 months is a long time given it appears so easy to tell Plex directly about some security issues.
This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.
