Plex, the popular application for overseeing and streaming personal media libraries, has issued an urgent alert to users utilizing certain versions of its Plex Media Server. The organization has detected a possible security flaw that has been rectified in a recent update. Users are strongly urged to upgrade their servers to the newest version to guarantee their systems stay secure.
### Immediate Update Required, Details Not Provided
As reported by BleepingComputer and Tecnoblog, Plex is instructing users operating server versions 1.41.7.x through 1.42.0.x to promptly update to Plex Media Server version 1.42.1.10060. The message from Plex underscores the significance of this update, as it addresses a critical security concern that came to light through their bug bounty initiative.
In the email sent to users, it states:
> **Update Your Plex Media Server**
>
> Dear Plex user,
>
> We recently received a notification via our bug bounty program regarding a potential security issue impacting Plex Media Server versions 1.41.7.x to 1.42.0.x. Thanks to that report, we were able to resolve the problem, release an updated version of the server, and continue enhancing our security measures.
>
> You’re receiving this message because our records indicate that a Plex Media Server associated with your Plex account is operating an older version of the server. We strongly advise that all users update their Plex Media Server to the latest version as soon as feasible, if you haven’t done so already.
>
> The new version (1.42.1.10060 or later) is now ready for update through your standard server management page, or you can download the package from our downloads page (https://www.plex.tv/media-server-downloads/).
>
> Thank you,
> The Plex Team
While Plex has not revealed specific information regarding the vulnerability, the absence of a CVE identifier implies that it is a serious matter needing immediate attention. Users are encouraged to confirm that their servers are updated, as public awareness of this vulnerability might prompt attempts by malicious entities to exploit unpatched systems.
Plex generally maintains a robust security reputation, but it has encountered difficulties previously, including issues associated with remote code execution that presents significant dangers. Thus, even if users think they are not on the affected versions, it is wise to verify that they are running version 1.42.1.10060 or later.
### In Summary
For Plex users, this serves as a crucial reminder to remain vigilant concerning software updates. Keeping your Plex Media Server updated is vital for safeguarding your personal media and data against possible security threats. If you have not yet performed the update, take action immediately to protect your Plex experience.
